UCF STIG Viewer Logo

Citrix Virtual Apps and Desktop 7.x Linux Virtual Delivery Agent Security Technical Implementation Guide


Overview

Date Finding Count (6)
2021-02-01 CAT I (High): 2 CAT II (Med): 4 CAT III (Low): 0
STIG Description
This Security Technical Implementation Guide is published as a tool to improve the security of Department of Defense (DoD) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.

Available Profiles



Findings (MAC II - Mission Support Sensitive)

Finding ID Severity Title
V-234260 High Citrix Linux Virtual Delivery Agent must only allow the use of DoD PKI established certificate authorities for verification of the establishment of protected sessions.
V-234257 High Citrix Linux Virtual Delivery Agent must implement DoD-approved encryption.
V-234259 Medium Citrix Linux Virtual Delivery Agent (LVDA) must be configured to prohibit or restrict the use of ports, as defined in the PPSM CAL and vulnerability assessments.
V-234258 Medium The application must be configured to disable non-essential capabilities.
V-234256 Medium The application must initiate a session lock after a 15-minute period of inactivity.
V-234255 Medium The application must limit the number of concurrent sessions to three.