The Enterprise Voice, Video, and Messaging Session Manager must be configured to use an organizational-level user account management system.

Severity	Group ID	Group Title	Version	Rule ID	Date	STIG Version
high	V-260010	SRG-NET-000138	SRG-NET-000138-VVSM-00102	SV-260010r948991_rule	2024-03-11	1

Description
To effectively manage user accounts, organizational level systems such as Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) are used to create and manage user credentials that can be used across the organization. This reduces the need for separate user account databases across systems, that can create orphaned account issues, and the need to remember different credentials for each system. When user access is no longer authorized, an organizational level system can simultaneously revoke access to all systems.

Description

To effectively manage user accounts, organizational level systems such as Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) are used to create and manage user credentials that can be used across the organization. This reduces the need for separate user account databases across systems, that can create orphaned account issues, and the need to remember different credentials for each system. When user access is no longer authorized, an organizational level system can simultaneously revoke access to all systems.

ℹ️ Check
Verify the Enterprise Voice, Video, and Messaging Session Manager is configured to use an organizational level user account management system. If the Enterprise Voice, Video, and Messaging Session Manager is not configured to use an organizational level user account management system, then is a finding.

✔️ Fix
Configure the Enterprise Voice, Video, and Messaging Session Manager to use an organizational level user account management system.