The UEM Agent must use managed endpoint device key storage for all persistent secret and private keys.
Severity | Group ID | Group Title | Version | Rule ID | Date | STIG Version |
|---|---|---|---|---|---|---|
| medium | V-234240 | SRG-APP-000176 | SRG-APP-000176-UEM-100001 | SV-234240r617354_rule | 2020-12-14 | 1 |
| Description |
|---|
| If validated secure storage locations are not used for keys, they could be compromised. Satisfies: FCS_STG_EXT.1(2) |
| ℹ️ Check |
|---|
| This requirement is not applicable if the UEM Agent is provided by the managed endpoint device operating system. Verify the UEM Agent uses the managed endpoint device key storage for all persistent secret and private keys. If the UEM Agent does not use the managed endpoint device key storage for all persistent secret and private keys, this is a finding. |
| ✔️ Fix |
|---|
| Configure the UEM Agent must use the managed endpoint device key storage for all persistent secret and private keys. |