UCF STIG Viewer Logo

VMware Horizon 7.13 Agent Security Technical Implementation Guide


Overview

Date Finding Count (15)
2021-07-30 CAT I (High): 0 CAT II (Med): 15 CAT III (Low): 0
STIG Description
This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Available Profiles



Findings (MAC III - Administrative Public)

Finding ID Severity Title
V-246874 Medium The Horizon Agent must block USB mass storage.
V-246872 Medium The Horizon Agent must audit clipboard actions for PCoIP.
V-246873 Medium The Horizon Agent desktops must not allow client drive redirection.
V-246870 Medium The Horizon Agent must not allow drag and drop for PCoIP.
V-246871 Medium The Horizon Agent must audit clipboard actions for Blast.
V-246869 Medium The Horizon Agent must not allow drag and drop for Blast.
V-246868 Medium The Horizon Agent must not allow file transfers through HTML Access.
V-246861 Medium The Horizon Agent must only run allowed scripts on user connect.
V-246860 Medium The Horizon Agent must require TLS connections.
V-246863 Medium The Horizon Agent must only run allowed scripts on user reconnect.
V-246862 Medium The Horizon Agent must only run allowed scripts on user disconnect.
V-246865 Medium The Horizon Agent must set an idle timeout.
V-246864 Medium The Horizon Agent must check the entire chain when validating certificates.
V-246867 Medium The Horizon Agent must block server to client clipboard actions for PCoIP.
V-246866 Medium The Horizon Agent must block server to client clipboard actions for Blast.