The information system automatically terminates emergency accounts after an organization defined time period for each type of account.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-36188	SRG-APP-234-NA	SV-47592r1_rule		Medium

Description
Emergency application accounts are typically created due to an unforeseen operational event or could ostensibly be used in the event of a vendor support visit where a support representative requires a temporary unique account in order to perform diagnostic testing or conduct some other support related activity. When these types of accounts are created, there is a risk that the temporary account may remain in place and active after the support representative has left. Rationale for non-applicability: The MDM server will leverage Enterprise Authentication Mechanism accounts. Therefore, the Enterprise Authentication Mechanism is expected to implement this control in lieu of local monitoring.

Description

Emergency application accounts are typically created due to an unforeseen operational event or could ostensibly be used in the event of a vendor support visit where a support representative requires a temporary unique account in order to perform diagnostic testing or conduct some other support related activity. When these types of accounts are created, there is a risk that the temporary account may remain in place and active after the support representative has left. Rationale for non-applicability: The MDM server will leverage Enterprise Authentication Mechanism accounts. Therefore, the Enterprise Authentication Mechanism is expected to implement this control in lieu of local monitoring.

STIG	Date
Mobile Device Manager Security Requirements Guide	2013-01-24

Details

Check Text ( C-44427r1_chk )
This requirement is NA for the MDM server SRG.

Fix Text (F-40718r1_fix)
The requirement is NA. No fix is required.