Innoslate must map the authenticated identity to the individual user or group account for PKI-based authentication.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| high | V-254094 | SRG-APP-000177 | SPEC-IN-000390 | SV-254094r845258_rule | 2022-08-31 | 1 |
| Description |
|---|
| Without mapping the certificate used to authenticate to the user account, the ability to determine the identity of the individual user or group will not be available for forensic analysis. |
| ℹ️ Check |
|---|
| Open the settings.properties file [Path] and verify the AUTHENTICATION_TYPE is set to "CAC". If AUTHENTICATION_TYPE is not set to "CAC", this is a finding. |
| ✔️ Fix |
|---|
| 1. Open the settings.properties file [Path]. 2. Change the AUTHENTICATION_TYPE to "CAC". 3. Save. 4. Restart the Innoslate service. |