Omnissa WS1 UEM API Security Technical Implementation Guide

Overview

VersionDateFinding Count (2)Downloads
V1R12026-06-15CAT I (High): 0CAT II (Medium): 2CAT III (Low): 0
STIG Description
This Security Technical Implementation Guide is published as a tool to improve the security of Department of War (DoW) information systems. The requirements are derived from the National Institute of Standards and Technology (NIST) 800-53 and related documents. Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil.
ClassifiedPublicSensitive
I - Mission Critical ClassifiedI - Mission Critical PublicI - Mission Critical Sensitive
II - Mission Support ClassifiedII - Mission Support PublicII - Mission Support Sensitive
III - Administrative ClassifiedIII - Administrative PublicIII - Administrative Sensitive

Findings - MAC I - Mission Critical Public

Finding IDSeverityTitleDescription
V-284174
LOWMEDIUMHIGH
The Omnissa WS1 UEM API must be configured to use approved authorizations for access control.To mitigate the risk of unauthorized access to sensitive information by entities that have been issued certificates by DoW-approved Public Key Infrast...
V-284197
LOWMEDIUMHIGH
The Omnissa WS1 UEM API must employ throttling.The API must employ throttling to limit the effects of information flooding types of denial-of-service (DoS) attacks. DoS is a condition when a resour...