UCF STIG Viewer Logo

Trend Deep Security must synchronize with Active Directory on a daily (or AO-defined) basis.


Overview

Finding ID Version Rule ID IA Controls Severity
V-66043 TMDS-00-004515 SV-80533r1_rule Medium
Description
Configuring the application to implement organization-wide security implementation guides and security checklists ensures compliance with federal standards and establishes a common security baseline across DoD that reflects the most restrictive security posture consistent with operational requirements. Configuration settings are the set of parameters that can be changed that affect the security posture and/or functionality of the system. Security-related parameters are those parameters impacting the security state of the application, including the parameters required to satisfy other security control requirements.
STIG Date
Trend Micro Deep Security 9.x Security Technical Implementation Guide 2016-02-26

Details

Check Text ( C-66687r2_chk )
Review the Trend Deep Security server to ensure synchronization occurs with Active Directory on a daily (or AO-defined) basis.

Under Administration >> Scheduled Tasks, review the scheduled tasks listed for "Daily Sync Users".

If a task for syncing user's accounts with AD does not exist, this is a finding.
Fix Text (F-72119r2_fix)
Configure the Trend Deep Security server to synchronize with Active Directory on a daily (or AO-defined) basis.

Under Administration >> Scheduled Tasks, click "New".

From the "Type" drop down menu, select "Synchronize Users/Contacts".

Select "Daily", and click "Next".

Enter start date, start time, and select "Every Day".

Click "Next".

Enter a unique name for this scheduled task or leave the default.

Check the box for" Task Enabled", click "Finish".