The application server must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-35602	SRG-APP-000180-AS-NA	SV-46889r1_rule		Medium

Description
Non-organizational users include all information system users other than organizational users, which include organizational employees or individuals the organization deems to have equivalent status of employees (e.g., contractors, guest researchers, individuals from allied nations). The application server is not designed to be accessed by non-organizational users. This requirement will apply to applications hosted on the AS but not the AS itself.

Description

Non-organizational users include all information system users other than organizational users, which include organizational employees or individuals the organization deems to have equivalent status of employees (e.g., contractors, guest researchers, individuals from allied nations). The application server is not designed to be accessed by non-organizational users. This requirement will apply to applications hosted on the AS but not the AS itself.

STIG	Date
Application Server Security Requirements Guide	2013-01-08

Details

Check Text ( C-43945r1_chk )
This requirement is NA for the AS SRG.

Fix Text (F-40143r1_fix)
The requirement is NA. No fix is required.