Status: Live
The organization will ensure that any WLAN service provided to its users, that can be used to access the network, is configured according to organizational information assurance standards. [UCF ID 00751]
Supporting and supported controls
This control directly supports:
- • Network configuration [UCF Control ID 00530]
There are no supporting controls.
Authority documents complied with:
DISA Wireless STIG Windows Mobile Messaging Wireless EChecklist Version 5,Release 2.4, Version 5 Release 2.4, § 2.2 (WIR2230), § 3.12, App B.3
Other Configuration Guidance
The Mobile WiFi Service selected should be approved by the DAA prior to use; should not be authorized for connections to hotel or public WiFi hotspots; should allow only home users whose WLAN system is configured as WPA2 Personal to use the WiFi service; should train users on how to use the WiFi service; should include the user responsibilities and WiFi services in the user agreement; and a security review on the WiFi Service should be performed by the organization every 12 months. If WiFi is not authorized, the Trust Digital server should have WiFi disabled. The Trust Digital security policy rule "Restrict WiFi" should be checked if its use is not approved and should not be checked if its use is approved. This policy rule located under Policy Manager/Resource Settings. [§ 2.2 (WIR2230), § 3.12, App B.3, DISA Wireless STIG Windows Mobile Messaging Wireless EChecklist Version 5,Release 2.4, Version 5 Release 2.4]
Copyright 2005-2009 Unified Compliance Framework™. All rights reserved.