Sentry must obtain its public key certificates from an appropriate certificate policy through an approved service provider.

An XCCDF Rule

Description

<VulnDiscussion>For user certificates, each organization obtains certificates from an approved, shared service provider, as required by OMB policy. For federal agencies operating a legacy public key infrastructure cross-certified with the Federal Bridge Certification Authority at medium assurance or higher, this Certification Authority will suffice.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>

ID: SV-251005r1028243_rule
Severity: Medium
References: CCI-000366 CCI-001159
Updated: 16 days ago

Configure the Sentry with a certificate from an approved Certificate Authority.

From MobileIron Core:
1. Log in to the MobileIron Core.
2. Navigate to "Services".
3. Select "Sentry".4. On each configured Sentry, select "Manage Certificate".
5. Upload appropriate certificate. 

From Sentry:
1. Log in to the Sentry. 
2. Navigate to "Security".
3. Select "Certificate Management".
4. Select "Manage Certificate".
5. Upload appropriate certificate. 

Reference "Sentry Guide for MobileIron Core" for uploading a certificate to Sentry, section "Standalone Sentry Certificate".

Sentry must obtain its public key certificates from an appropriate certificate policy through an approved service provider.

Description

Remediation - Manual Procedure