Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The Enterprise Voice, Video, and Messaging Session Manager must be configured to use an organizational-level user account management system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-260010 | SRG-NET-000138-VVSM-00102 | SV-260010r948991_rule | High |
| Description |
|---|
| To effectively manage user accounts, organizational level systems such as Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) are used to create and manage user credentials that can be used across the organization. This reduces the need for separate user account databases across systems, that can create orphaned account issues, and the need to remember different credentials for each system. When user access is no longer authorized, an organizational level system can simultaneously revoke access to all systems. |
| STIG | Date |
|---|---|
| Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide | 2024-03-11 |
Details
| Check Text ( C-63741r948989_chk ) |
|---|
| Verify the Enterprise Voice, Video, and Messaging Session Manager is configured to use an organizational level user account management system. If the Enterprise Voice, Video, and Messaging Session Manager is not configured to use an organizational level user account management system, then is a finding. |
| Fix Text (F-63648r948990_fix) |
|---|
| Configure the Enterprise Voice, Video, and Messaging Session Manager to use an organizational level user account management system. |