Microsoft Intune Service Desktop Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-APP-000149-UEM-000083
<GroupDescription></GroupDescription>Group -
Microsoft Intune service must be configured to use a DOD Central Directory Service to provide multifactor authentication for network access to privileged and nonprivileged accounts and individual and group accounts.
<VulnDiscussion>A comprehensive account management process that includes automation helps to ensure the accounts designated as requiring atte...Rule Medium Severity -
SRG-APP-000174-UEM-000104
<GroupDescription></GroupDescription>Group -
Microsoft Intune service must enforce a 60-day maximum password lifetime restriction.
<VulnDiscussion>Any password, no matter how complex, can eventually be cracked. Therefore, passwords need to be changed at specific intervals...Rule Medium Severity -
SRG-APP-000291-UEM-000165
<GroupDescription></GroupDescription>Group -
Microsoft Intune service must notify system administrators and the information system security officer (ISSO) when accounts are created.
<VulnDiscussion>Once an attacker establishes access to an application, the attacker often attempts to create a persistent method of reestabli...Rule Medium Severity -
SRG-APP-000292-UEM-000166
<GroupDescription></GroupDescription>Group -
Microsoft Intune service must notify system administrators and the information system security officer (ISSO) when accounts are modified.
<VulnDiscussion>When application accounts are modified, user accessibility is affected. Accounts are used for identifying individual users or...Rule Medium Severity -
SRG-APP-000293-UEM-000167
<GroupDescription></GroupDescription>Group -
Microsoft Intune service must notify system administrators and the information system security officer (ISSO) for account disabling actions.
<VulnDiscussion>When application accounts are disabled, user accessibility is affected. Accounts are used for identifying individual users or...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.