← Back to Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide

V-260010

CAT I (High)

The Enterprise Voice, Video, and Messaging Session Manager must be configured to use an organizational-level user account management system.

Rule ID

SV-260010r948991_rule

STIG

Enterprise Voice, Video, and Messaging Session Management Security Requirements Guide

Version

V1R2

CCIs

CCI-000764

Discussion

To effectively manage user accounts, organizational level systems such as Lightweight Directory Access Protocol (LDAP) or Active Directory (AD) are used to create and manage user credentials that can be used across the organization. This reduces the need for separate user account databases across systems, that can create orphaned account issues, and the need to remember different credentials for each system. When user access is no longer authorized, an organizational level system can simultaneously revoke access to all systems.

Check Content

Verify the Enterprise Voice, Video, and Messaging Session Manager is configured to use an organizational level user account management system.

If the Enterprise Voice, Video, and Messaging Session Manager is not configured to use an organizational level user account management system, then is a finding.

Fix Text

Configure the Enterprise Voice, Video, and Messaging Session Manager to use an organizational level user account management system.