UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

The External CA Root Certificate must be installed into the Trusted Root Store.


Overview

Finding ID Version Rule ID IA Controls Severity
V-32273 WN08-PK-000002 SV-48308r2_rule Medium
Description
To ensure secure websites protected with ECA server certificates on NIPRNet are properly validated, the system must trust the ECA Root CA 2. The ECA root certificate will ensure the trust chain is established for server certificates issued from the External CA. This requirement only applies to NIPRNet systems.
STIG Date
Windows 8 / 8.1 Security Technical Implementation Guide 2016-07-22

Details

Check Text ( None )
None
Fix Text (F-48589r1_fix)
Install the ECA root CA 2 certificate on NIPRNet systems only. The InstallRoot tool is available on IASE at http://iase.disa.mil/pki-pke/function_pages/tools.html.