Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Symantec ProxySG providing user authentication intermediary services must conform to Federal Identity, Credential, and Access Management (FICAM)-issued profiles.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-94299 | SYMP-AG-000430 | SV-104253r1_rule | Medium |
| Description |
|---|
| Without conforming to FICAM-issued profiles, the information system may not be interoperable with FICAM-authentication protocols, such as SAML 2.0 and OpenID 2.0. Use of FICAM-issued profiles addresses open identity management standards. This only applies to components where this is specific to the function of the device or has the concept of a nonorganizational user (e.g., ALG capability that is the front end for an application in a DMZ). |
| STIG | Date |
|---|---|
| Symantec ProxySG ALG Security Technical Implementation Guide | 2019-12-20 |
Details
| Check Text ( C-93485r1_chk ) |
|---|
| Configure ProxySG to conform to a FICAM-authentication protocol and verify that SAML authentication has been configured. 1. Log on to the Web Management Console. 2. Browse to Configuration >> Authentication. 3. Click "SAML" and verify that each tab has been configured properly per the organizational requirement. If Symantec ProxySG providing user authentication intermediary services does not conform to FICAM-issued profiles, this is a finding. |
| Fix Text (F-100415r1_fix) |
|---|
| Configure ProxySG to conform to a FICAM-authentication protocol and configure it to use SAML authentication. 1. Log on to the Web Management Console. 2. Browse to Configuration >> Authentication. 3. Click "SAML" and configure. |