Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-234533 | SRG-APP-000390-UEM-000261 | SV-234533r617355_rule | Medium |
Description |
---|
This requirement refers to the end-point device user reauthenticating to the device. The following are examples of organization-defined circumstances or situations requiring reauthentication: (i) After a screen lock; (ii) After device reboot; (iii) Before installation of new device policy or profile; (iv) Before executing a device reset or wipe. Satisfies:FMT_SMF.1.1(2) b Reference:PP-MDM-431016 |
STIG | Date |
---|---|
Unified Endpoint Management Server Security Requirements Guide | 2020-12-14 |
Check Text ( C-37718r615981_chk ) |
---|
Verify the UEM server requires end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication. If the UEM server does not require end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication, this is a finding. |
Fix Text (F-37683r615243_fix) |
---|
Configure the UEM server to require end-point devices to reauthenticate when organization-defined circumstances or situations requiring reauthentication. |