III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
The Horizon Agent must only run allowed scripts on user connect.
<VulnDiscussion>The Horizon Agent has the capability to run scripts on user connect, disconnect, and reconnect. While this can be useful in s...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
The Horizon Agent must only run allowed scripts on user disconnect.
<VulnDiscussion>The Horizon Agent has the capability to run scripts on user connect, disconnect, and reconnect. While this can be useful in s...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
The Horizon Agent must only run allowed scripts on user reconnect.
<VulnDiscussion>The Horizon Agent has the capability to run scripts on user connect, disconnect, and reconnect. While this can be useful in s...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
The Horizon Agent must check the entire chain when validating certificates.
<VulnDiscussion>Any time the Horizon Agent establishes an outgoing TLS connection, it verifies the server certificate revocation status. By d...Rule Medium Severity -
SRG-APP-000516-AS-000237
<GroupDescription></GroupDescription>Group -
The Horizon Agent must set an idle timeout.
<VulnDiscussion>Idle sessions are at increased risk of being hijacked. If a user has stepped away from their desk and is no long in positive ...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules