STIGQter: STIG Summary: Unified Endpoint Management Server Security Requirements Guide Version: 1 Release: 1 Benchmark Date: 20 Nov 2020:

The UEM server must be configured to verify software updates to the server using a digital signature mechanism prior to installing those updates.

DISA Rule

SV-234629r617355_rule

Vulnerability Number

V-234629

Group Title

SRG-APP-000479

Rule Version

SRG-APP-000479-UEM-000354

Severity

CAT II

CCI(s)

• CCI-002740 - The information system implements cryptographic mechanisms to authenticate organization-defined software or firmware components prior to installation.

Weight

10

Fix Recommendation

Configure the UEM server to verify software updates to the server using a digital signature mechanism prior to installing those updates.

Check Contents

Verify the UEM server verifies software updates to the server using a digital signature mechanism prior to installing those updates.

If the UEM server does not verify software updates to the server using a digital signature mechanism prior to installing those updates, this is a finding.

Vulnerability Number

V-234629

Documentable

False

Rule Version

SRG-APP-000479-UEM-000354

Severity Override Guidance

Verify the UEM server verifies software updates to the server using a digital signature mechanism prior to installing those updates.

If the UEM server does not verify software updates to the server using a digital signature mechanism prior to installing those updates, this is a finding.

Check Content Reference

M

Target Key

5269

Comments