The VPN Gateway must accept the Common Access Card (CAC) credential.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-207239 | SRG-NET-000341-VPN-001350 | SV-207239r856712_rule | CCI-001953 | medium |
| Description | ||||
| The use of Personal Identity Verification (PIV) credentials facilitates standardization and reduces the risk of unauthorized access. DoD has mandated the use of the CAC as the PIV credential to support identity management and personal authentication for systems covered under HSPD 12, as well as a primary component of layered protection for national security systems. | ||||
| STIG | Date | |||
| Virtual Private Network (VPN) Security Requirements Guide | 2024-12-19 | |||
Details
Check Text (C-207239r856712_chk)
Verify the VPN Gateway accepts PIV credentials.
If the VPN Gateway does not accept the CAC credential, this is a finding.
Fix Text (F-7499r573753_fix)
Configure the VPN Gateway to accept the CAC credential.