The Omnissa WS1 UEM server must prohibit password reuse for a minimum of five generations.

Overview

Finding IDVersionRule IDIA ControlsSeverity
V-284350OMW1-00-011500SV-284350r1224093_ruleCCI-004061medium
Description
Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. To meet password policy requirements, passwords need to be changed at specific policy-based intervals. If the information system or application allows the user to consecutively reuse their password when that password has exceeded its defined lifetime, the end result is a password that is not changed as per policy requirements. Satisfies: FMT_SMF.1(2)b Reference: PP-MDM-431025
STIGDate
Omnissa WS1 UEM Server Security Technical Implementation Guide2026-06-15

Details

Check Text (C-284350r1224093_chk)

Authenticate to the Workspace ONE UEM console as an administrator. Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords. If "Enforced password history" is not set to "5 passwords remembered", this is a finding. Note: If this procedure is not seen on the console, the Cloud Service Provider (CSP) is managing the setting. Contact the CSP to review the required setting.

Fix Text (F-88819r1211918_fix)

Authenticate to the Workspace ONE UEM console as an administrator. 1. Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords. 2. Configure "Enforced password history" to "5 passwords remembered". 3. Click "Save". Note: If this procedure is not seen on the console, the CSP is managing the setting. Contact the CSP to implement the required setting.