An error occurred:

Check: SRG-APP-000176-UEM-100001

Unified Endpoint Management Agent SRG: SRG-APP-000176-UEM-100001 (in version v1 r1)

Title

The UEM Agent must use managed endpoint device key storage for all persistent secret and private keys. (Cat II impact)

Discussion

If validated secure storage locations are not used for keys, they could be compromised. Satisfies: FCS_STG_EXT.1(2)

Check Content

This requirement is not applicable if the UEM Agent is provided by the managed endpoint device operating system. Verify the UEM Agent uses the managed endpoint device key storage for all persistent secret and private keys. If the UEM Agent does not use the managed endpoint device key storage for all persistent secret and private keys, this is a finding.

Fix Text

Configure the UEM Agent must use the managed endpoint device key storage for all persistent secret and private keys.

Additional Identifiers

Rule ID: SV-234240r617354_rule

Vulnerability ID: V-234240

Group Title: SRG-APP-000176

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-000186

For public key-based authentication, enforce authorized access to the corresponding private key.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
IA-5(2)

Pki-based Authentication