The Samsung SDS EMM server must be configured to use one-time password in addition to username and password for administrator logon to the server.

An XCCDF Rule

Details
Profiles

Description

Two-factor authentication ensures strong authentication and access controls are in place for privileged accounts. But One-Time Passwords (OTP) do not meet DoD requirements that system administrators access privileged accounts via CAC authentication through a directory service (Active Directory). SFR ID: FIA

ID: SV-225649r744410_rule
Version: SSDS-00-000725
Severity: High
References: CCI-000015
Updated: 11 days ago

Remediation Templates

Use the following procedure for configuring the use of OTP authentication on the EMM server: 
 
On the MDM console, do the following: 
1.  Log into the SDS EMM console.
2.  Go to Setting >> Server >> Configuration >> Two-Factor Authentication.
3.  Set Two-Factor Authentication to "No".
4.  Save setting.

The Samsung SDS EMM server must be configured to use one-time password in addition to username and password for administrator logon to the server.

Description

Remediation Templates

A Manual Procedure