An error occurred:

Check: SRG-APP-000427-UEM-100009

Unified Endpoint Management Agent SRG: SRG-APP-000427-UEM-100009 (in version v1 r1)

Title

The UEM Agent must perform the following functions: Import the certificates to be used for authentication of UEM Agent communications. (Cat II impact)

Discussion

It is critical that the UEM agent only use validated certificates for policy updates. Otherwise, there is no assurance that a malicious actor has not inserted itself in the process of packaging the code or policy. Satisfies: FMT_SMF_EXT.4.1

Check Content

Verify the UEM Agent performs the following functions: Import the certificates to be used for authentication of UEM Agent communications. If the UEM Agent does not perform the following functions: Import the certificates to be used for authentication of UEM Agent communications, this is a finding.

Fix Text

Configure the UEM Agent to perform the following functions: Import the certificates to be used for authentication of UEM Agent communications.

Additional Identifiers

Rule ID: SV-234244r617354_rule

Vulnerability ID: V-234244

Group Title: SRG-APP-000427

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002470

Only allow the use of organization-defined certificate authorities for verification of the establishment of protected sessions.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SC-23(5)

Allowed Certificate Authorities