STIGQter: STIG Summary: General Purpose Operating System SRG Version: 1 Release: 6 Benchmark Date: 26 Jul 2019:

The operating system must implement multifactor authentication for remote access to privileged accounts in such a way that one of the factors is provided by a device separate from the system gaining access.

DISA Rule

SV-71077r1_rule

Vulnerability Number

V-56817

Group Title

SRG-OS-000375-GPOS-00160

Rule Version

SRG-OS-000375-GPOS-00160

Severity

CAT II

CCI(s)

• CCI-001948 - The information system implements multifactor authentication for remote access to privileged accounts such that one of the factors is provided by a device separate from the system gaining access.

Weight

10

Fix Recommendation

Configure the operating system to implement multifactor authentication for remote access to privileged accounts in such a way that one of the factors is provided by a device separate from the system gaining access.

Check Contents

Verify the operating system implements multifactor authentication for remote access to privileged accounts in such a way that one of the factors is provided by a device separate from the system gaining access. If it does not, this is a finding.

Vulnerability Number

V-56817

Documentable

False

Rule Version

SRG-OS-000375-GPOS-00160

Severity Override Guidance

Verify the operating system implements multifactor authentication for remote access to privileged accounts in such a way that one of the factors is provided by a device separate from the system gaining access. If it does not, this is a finding.

Check Content Reference

M

Target Key

2739

Comments