Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
SRG-OS-000117-NA | SRG-OS-000117-NA | SRG-OS-000117-NA_rule | Medium |
Description |
---|
Device authentication is a solution enabling an organization to manage both users and devices. It is an additional layer of authentication ensuring only specific pre-authorized devices operated by specific pre-authorized users can access the network. Device authentication requires unique identification and authentication that may be defined by type, by specific device, or by a combination of type and device as deemed appropriate by the organization. Bidirectional authentication provides a means for both connecting parties to mutually authenticate one another and cryptographically based authentication provides a secure means of authenticating without the use of clear text passwords. |
STIG | Date |
---|---|
Red Hat Enterprise Linux 6 Security Technical Implementation Guide | 2013-02-05 |
Check Text ( C-SRG-OS-000117-NA_chk ) |
---|
RHEL6 cannot support this requirement without assistance from an external application, policy, or service. This requirement is NA. |
Fix Text (F-SRG-OS-000117-NA_fix) |
---|
This requirement is NA. No fix is required. |