Check: SRG-NET-000138-VVSM-00102
Unified Communications Session Management SRG:
SRG-NET-000138-VVSM-00102
(in version v1 r0.1)
Title
The Unified Communications Session Manager must be configured to use an organizational-level user account management system. (Cat I impact)
Discussion
To effectively manage user accounts, organizational level systems such as Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) are used to create and manage user credentials that can be used across the organization. This reduces the need for separate user account databases across systems, that can create orphaned account issues, and the need to remember different credentials for each system. When user access is no longer authorized, an organizational level system can simultaneously revoke access to all systems.
Check Content
Verify the Unified Communications Session Manager is configured to use an organizational level user account management system. If the Unified Communications Session Manager is not configured to use an organizational level user account management system, then is a finding.
Fix Text
Configure the Unified Communications Session Manager to use an organizational level user account management system.
Additional Identifiers
Rule ID: SRG-NET-000138-VVSM-00102_rule
Vulnerability ID: SRG-NET-000138-VVSM-00102
Group Title: SRG-NET-000138-VVSM-00102
Expert Comments
CCIs
| Number | Definition |
|---|---|
| CCI-000764 |
Uniquely identify and authenticate organizational users and associate that unique identification with processes acting on behalf of those users. |
Controls
| Number | Title |
|---|---|
| IA-2 |
Identification and Authentication (organizational Users) |