The UEM server must notify the user, upon successful logon (access) to the application, of the date and time of the last logon (access).

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-234315	SRG-APP-000075-UEM-000041	SV-234315r617355_rule		Medium

Description
Users need to be aware of activity that occurs regarding their application account. Providing users with information regarding the date and time of their last successful login allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators. This requirement is intended to cover both traditional interactive logons to information systems and general accesses to information systems that occur in other types of architectural configurations (e.g., service-oriented architectures).

Description

Users need to be aware of activity that occurs regarding their application account. Providing users with information regarding the date and time of their last successful login allows the user to determine if any unauthorized activity has occurred and gives them an opportunity to notify administrators. This requirement is intended to cover both traditional interactive logons to information systems and general accesses to information systems that occur in other types of architectural configurations (e.g., service-oriented architectures).

STIG	Date
Unified Endpoint Management Server Security Requirements Guide	2020-12-14

Details

Check Text ( C-37500r613955_chk )
Verify the UEM server notifies the user, upon successful logon (access) to the application, of the date and time of the last logon (access). If the UEM server does not notify the user, upon successful logon (access) to the application, of the date and time of the last logon (access), this is a finding.

Fix Text (F-37465r613956_fix)
Configure the UEM server to notify the user, upon successful logon (access) to the application, of the date and time of the last logon (access).