Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The ALG providing user authentication intermediary services must conform to FICAM-issued profiles.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-54543 | SRG-NET-000349-ALG-000106 | SV-68789r1_rule | Medium |
| Description |
|---|
| Without conforming to Federal Identity, Credential, and Access Management (FICAM)-issued profiles, the information system may not be interoperable with FICAM-authentication protocols, such as SAML 2.0 and OpenID 2.0. Use of FICAM-issued profiles addresses open identity management standards. This requirement only applies to components where this is specific to the function of the device or has the concept of a non-organizational user, (e.g., ALG capability that is the front end for an application in a DMZ). |
| STIG | Date |
|---|---|
| Application Layer Gateway Security Requirements Guide | 2014-11-03 |
Details
| Check Text ( C-55159r1_chk ) |
|---|
| If the ALG does not provide user authentication intermediary services, this is not applicable. Verify the ALG conform to FICAM-issued profiles. If the ALG does not conform to FICAM-issued profiles, this is a finding. |
| Fix Text (F-59397r1_fix) |
|---|
| If user authentication intermediary services are provided, configure ALG to conform to FICAM-issued profiles. |