The Voice Video Endpoint used for videoconferencing must use multifactor authentication for network access.

From Voice Video Endpoint Security Requirements Guide

Part of SRG-NET-000140-VVEP-00032

Associated with: CCI-000766

SV-81237r1_rule The Voice Video Endpoint used for videoconferencing must use multifactor authentication for network access.

Vulnerability discussion

To assure accountability and prevent unauthenticated access, users must utilize multifactor authentication to prevent potential misuse and compromise of the system. Multifactor authentication uses two or more factors to achieve authentication. Factors include:(i) Something you know (e.g., password/PIN); (ii) Something you have (e.g., cryptographic identification device, token); or (iii) Something you are (e.g., biometric). Network access is any access to an application by a user (or process acting on behalf of a user) where said access is obtained through a network connection. The DoD CAC with DoD-approved PKI is an example of multifactor authentication. This does not apply to authentication for the purpose of configuring the device itself (i.e., device management).

Check content

If the Voice Video Endpoint is not a hardware endpoint, this check procedure is Not Applicable. Verify the Voice Video Endpoint used for videoconferencing uses multifactor authentication for network access. For hardware endpoints, the devices must use certificates to register with the session manager or multipoint controller. If the Voice Video Endpoint used for videoconferencing does not use multifactor authentication for network access, this is a finding.

Fix text

Configure the Voice Video Endpoint used for videoconferencing to use multifactor authentication for network access.

Pro Tips

Powered by sagemincer