The Omnissa WS1 UEM server must prohibit password reuse for a minimum of five generations.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-284350 | OMW1-00-011500 | SV-284350r1224093_rule | CCI-004061 | medium |
| Description | ||||
| Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. To meet password policy requirements, passwords need to be changed at specific policy-based intervals. If the information system or application allows the user to consecutively reuse their password when that password has exceeded its defined lifetime, the end result is a password that is not changed as per policy requirements. Satisfies: FMT_SMF.1(2)b Reference: PP-MDM-431025 | ||||
| STIG | Date | |||
| Omnissa WS1 UEM Server Security Technical Implementation Guide | 2026-06-15 | |||
Details
Check Text (C-284350r1224093_chk)
Authenticate to the Workspace ONE UEM console as an administrator.
Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords.
If "Enforced password history" is not set to "5 passwords remembered", this is a finding.
Note: If this procedure is not seen on the console, the Cloud Service Provider (CSP) is managing the setting. Contact the CSP to review the required setting.
Fix Text (F-88819r1211918_fix)
Authenticate to the Workspace ONE UEM console as an administrator.
1. Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords.
2. Configure "Enforced password history" to "5 passwords remembered".
3. Click "Save".
Note: If this procedure is not seen on the console, the CSP is managing the setting. Contact the CSP to implement the required setting.