UCF STIG Viewer Logo

Microsoft Skype for Business 2016 Security Technical Implementation Guide


Overview

Date Finding Count (3)
2016-11-02 CAT I (High): 0 CAT II (Med): 3 CAT III (Low): 0
STIG Description
The Microsoft Skype for Business 2016 Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil.

Available Profiles



Findings (MAC III - Administrative Sensitive)

Finding ID Severity Title
V-70905 Medium In the event a secure Session Initiation Protocol (SIP) connection fails, the connection must be restricted from resorting to the unencrypted HTTP.
V-70901 Medium The ability to store user passwords in Skype must be disabled.
V-70903 Medium Session Initiation Protocol (SIP) security mode must be configured.