UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The operating system must use multifactor authentication for network access to non-privileged accounts where one of the factors is provided by a device separate from the operating system being accessed.


Overview

Finding ID Version Rule ID IA Controls Severity
V-28824 SRG-OS-000111 SV-36814r1_rule Medium
Description
Multifactor authentication is defined as using two or more factors to achieve authentication. Factors include: (i) something you know (e.g., password/PIN); (ii) something you have (e.g., cryptographic identification device, token); or (iii) something you are (e.g., biometric). A non-privileged account is defined as an information system account with authorizations of a regular or non-privileged user. When one of the authentication factors is provided by a device separate from the system that is gaining access, this is referred to as out of band 2 factor authentication.
STIG Date
Operating System Security Requirements Guide 2011-12-28

Details

Check Text ( None )
None
Fix Text (None)
None