Title

The Enterprise Voice, Video, and Messaging Session Manager must be configured to use an organizational-level user account management system. (Cat I impact)

Discussion

To effectively manage user accounts, organizational level systems such as Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) are used to create and manage user credentials that can be used across the organization. This reduces the need for separate user account databases across systems, that can create orphaned account issues, and the need to remember different credentials for each system. When user access is no longer authorized, an organizational level system can simultaneously revoke access to all systems.

Check Content

Verify the Enterprise Voice, Video, and Messaging Session Manager is configured to use an organizational level user account management system. If the Enterprise Voice, Video, and Messaging Session Manager is not configured to use an organizational level user account management system, then is a finding.

Fix Text

Configure the Enterprise Voice, Video, and Messaging Session Manager to use an organizational level user account management system.

Additional Identifiers

Rule ID: SV-260010r948991_rule

Vulnerability ID: V-260010

Group Title: SRG-NET-000138

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.