The UEM server must require end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-234533 | SRG-APP-000390-UEM-000261 | SV-234533r617355_rule | Medium |
| Description |
|---|
| This requirement refers to the end-point device user reauthenticating to the device. The following are examples of organization-defined circumstances or situations requiring reauthentication: (i) After a screen lock; (ii) After device reboot; (iii) Before installation of new device policy or profile; (iv) Before executing a device reset or wipe. Satisfies:FMT_SMF.1.1(2) b Reference:PP-MDM-431016 |
| STIG | Date |
|---|---|
| Unified Endpoint Management Server Security Requirements Guide | 2020-12-14 |
Details
| Check Text ( C-37718r615981_chk ) |
|---|
| Verify the UEM server requires end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication. If the UEM server does not require end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication, this is a finding. |
| Fix Text (F-37683r615243_fix) |
|---|
| Configure the UEM server to require end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication. |