DocAve must provide automated mechanisms for supporting account management functions.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-253513 | SRG-APP-000023 | DCAV-00-000009 | SV-253513r836514_rule | 2022-08-24 | 1 |
| Description |
|---|
| Remote access (e.g., Remote Desktop Protocol [RDP]) is access to DoD nonpublic information systems by an authorized user (or an information system) communicating through an external, nonorganization-controlled network. Remote access methods include, for example, dial-up, broadband, and wireless. |
| ℹ️ Check |
|---|
| DocAve supports integration with Active Directory (AD) for automated account management. Check the DocAve configuration to ensure AD Integration is enabled. - Log on to DocAve with admin account. - On the Control Panel page, in the Authentication Manager section, click "Authentication Manager". - Navigate to AD Integration. - Verify that the AD Integration option is enabled. If the AD Integration option is not enabled, this is a finding. |
| ✔️ Fix |
|---|
| Configure the DocAve configuration to ensure AD Integration is enabled. - Log on to DocAve with admin account. - On the Control Panel page, in the Authentication Manager section, click "Authentication Manager". - Navigate to AD Integration. - Set the Action of AD Integration to Enable. - Save settings. Add AD user or group to DocAve by Account Manager, realize automated mechanisms through AD account management functions. |