Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
The Horizon Client must not send anonymized usage data.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-246875 | HRZC-7X-000001 | SV-246875r768585_rule | Medium |
| Description |
|---|
| By default, the Horizon Client collects anonymized data from the client systems to help improve software and hardware compatibility. To eliminate any possibility of sensitive DoD configurations being known to unauthorized parties, even when anonymized, this setting must be disabled. |
| STIG | Date |
|---|---|
| VMware Horizon 7.13 Client Security Technical Implementation Guide | 2021-07-22 |
Details
| Check Text ( C-50307r768583_chk ) |
|---|
| Ensure the vdm_agent*.admx templates are added. Open the "Group Policy Management" MMC snap-in. Open the site-specific GPO applying Horizon settings to the VDI desktops. Navigate to Computer Configuration >> Policies >> Administrative Templates >> VMware Horizon Client Configuration. Double-click the "Allow data sharing" setting. If "Allow data sharing" is set to "Enabled" or "Not Configured", this is a finding. |
| Fix Text (F-50261r768584_fix) |
|---|
| Ensure the vdm_agent*.admx templates are added. Open the "Group Policy Management" MMC snap-in. Open the site-specific GPO applying Horizon settings to the VDI desktops. Navigate to Computer Configuration >> Policies >> Administrative Templates >> VMware Horizon Client Configuration. Double-click the "Allow data sharing" setting. Make sure the setting is "Disabled". Click "OK". |