Skip to content
Log In

Citrix XenDesktop 7.x License Server Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000090

    Group
    Show

  • SRG-APP-000219

    Group
    Show

  • SRG-APP-000400

    Group
    Show

  • XenDesktop License Server must prohibit the use of cached authenticators after an organization-defined time period.

    If cached authentication information is out of date, the validity of the authentication information may be questionable.
    Rule Medium Severity
    Show

  • SRG-APP-000439

    Group
    Show

  • XenDesktop License Server must protect the confidentiality and integrity of transmitted information.

    Without protection of the transmitted information, confidentiality and integrity may be compromised since unprotected communications can be intercepted and read or altered. This requirement appli...
    Rule Medium Severity
    Show

  • SRG-APP-000440

    Group
    Show

  • XenDesktop License Server must implement cryptographic mechanisms to prevent unauthorized disclosure of information and/or detect changes to information during transmission unless otherwise protected by alternative physical safeguards, such as, at a minimum, a Protected Distribution Systems (PDS).

    Encrypting information for transmission protects information from unauthorized disclosure and modification. Cryptographic mechanisms implemented to protect information integrity include, for exampl...
    Rule High Severity
    Show

  • SRG-APP-000442

    Group
    Show

  • XenDesktop License Server must maintain the confidentiality and integrity of information during reception.

    Information can be unintentionally or maliciously disclosed or modified during reception including, for example, during aggregation, at protocol transformation points, and during packing/unpacking....
    Rule Medium Severity
    Show

  • SRG-APP-000014

    Group
    Show

  • XenDesktop License Server must implement DoD-approved encryption to protect the confidentiality of remote access sessions.

    Without confidentiality protection mechanisms, unauthorized individuals may gain access to sensitive information via a remote access session. Remote access is access to DoD nonpublic information ...
    Rule High Severity
    Show

  • XenDesktop License Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.

    Without the capability to restrict which roles and individuals can select which events are audited, unauthorized personnel may be able to prevent the auditing of critical events. Misconfigured audi...
    Rule Medium Severity
    Show

  • XenDesktop License Server must protect the authenticity of communications sessions.

    Authenticity protection provides protection against man-in-the-middle attacks/session hijacking and the insertion of false information into sessions. Application communication sessions are protect...
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules