STIGhubSTIGhub
STIGsSearchCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 3 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Application Layer Gateway Security Requirements Guide

V-205002

CAT II (Medium)

The ALG providing user authentication intermediary services must conform to Federal Identity, Credential, and Access Management (FICAM)-issued profiles.

Rule ID

SV-205002r981646_rule

STIG

Application Layer Gateway Security Requirements Guide

Version

V2R3

CCIs

CCI-004085

Discussion

Without conforming to FICAM-issued profiles, the information system may not be interoperable with FICAM-authentication protocols, such as SAML 2.0 and OpenID 2.0. Use of FICAM-issued profiles addresses open identity management standards. This requirement only applies to components where this is specific to the function of the device or has the concept of a nonorganizational user, (e.g., ALG capability that is the front end for an application in a DMZ).

Check Content

If the ALG does not provide user authentication intermediary services, this is not applicable.

Verify the ALG conforms to FICAM-issued profiles.

If the ALG does not conform to FICAM-issued profiles, this is a finding.

Fix Text

If user authentication intermediary services are provided, configure ALG to conform to FICAM-issued profiles.