UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The Horizon Client must not show the Log in as current user option.


Overview

Finding ID Version Rule ID IA Controls Severity
V-246877 HRZC-7X-000003 SV-246877r768591_rule Medium
Description
The Horizon Connection Server STIG disabled the "Log in as current user" option, for reasons described there. Displaying this option and allowing users to select it would lead to unnecessary confusion and therefore must be disabled.
STIG Date
VMware Horizon 7.13 Client Security Technical Implementation Guide 2021-07-22

Details

Check Text ( C-50309r768589_chk )
Ensure the vdm_agent*.admx templates are added. Open the "Group Policy Management" MMC snap-in. Open the site-specific GPO applying Horizon settings to the VDI desktops.

Navigate to Computer Configuration >> Policies >> Administrative Templates >> VMware Horizon Client Configuration >> Security Settings. Double-click "Display option to Log in as current user".

If "Display option to Log in as current user" is not set to "Disabled", this is a finding.
Fix Text (F-50263r768590_fix)
Ensure the vdm_agent*.admx templates are added. Open the "Group Policy Management" MMC snap-in. Open the site-specific GPO applying Horizon settings to the VDI desktops.

Navigate to Computer Configuration >> Policies >> Administrative Templates >> VMware Horizon Client Configuration >> Security Settings. Double-click "Display option to Log in as current user".

Make sure the setting is "Disabled". Click "OK".