UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Symantec ProxySG providing user authentication intermediary services must conform to Federal Identity, Credential, and Access Management (FICAM)-issued profiles.


Overview

Finding ID Version Rule ID IA Controls Severity
V-94299 SYMP-AG-000430 SV-104253r1_rule Medium
Description
Without conforming to FICAM-issued profiles, the information system may not be interoperable with FICAM-authentication protocols, such as SAML 2.0 and OpenID 2.0. Use of FICAM-issued profiles addresses open identity management standards. This only applies to components where this is specific to the function of the device or has the concept of a nonorganizational user (e.g., ALG capability that is the front end for an application in a DMZ).
STIG Date
Symantec ProxySG ALG Security Technical Implementation Guide 2019-05-21

Details

Check Text ( C-93485r1_chk )
Configure ProxySG to conform to a FICAM-authentication protocol and verify that SAML authentication has been configured.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Authentication.
3. Click "SAML" and verify that each tab has been configured properly per the organizational requirement.

If Symantec ProxySG providing user authentication intermediary services does not conform to FICAM-issued profiles, this is a finding.
Fix Text (F-100415r1_fix)
Configure ProxySG to conform to a FICAM-authentication protocol and configure it to use SAML authentication.

1. Log on to the Web Management Console.
2. Browse to Configuration >> Authentication.
3. Click "SAML" and configure.