The Omnissa WS1 UEM server must prohibit password reuse for a minimum of five generations.

Severity
Group ID
Group Title
Version
Rule ID
Date
STIG Version
mediumV-284350SRG-APP-000165-UEM-000095OMW1-00-011500SV-284350r1224093_rule2026-06-151

Description

Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute-force attacks. To meet password policy requirements, passwords need to be changed at specific policy-based intervals. If the information system or application allows the user to consecutively reuse their password when that password has exceeded its defined lifetime, the end result is a password that is not changed as per policy requirements. Satisfies: FMT_SMF.1(2)b Reference: PP-MDM-431025

ℹ️ Check

Authenticate to the Workspace ONE UEM console as an administrator. Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords. If "Enforced password history" is not set to "5 passwords remembered", this is a finding. Note: If this procedure is not seen on the console, the Cloud Service Provider (CSP) is managing the setting. Contact the CSP to review the required setting.

✔️ Fix

Authenticate to the Workspace ONE UEM console as an administrator. 1. Navigate to Groups & Settings >> All Settings >> Admin >> Console Security >> Passwords. 2. Configure "Enforced password history" to "5 passwords remembered". 3. Click "Save". Note: If this procedure is not seen on the console, the CSP is managing the setting. Contact the CSP to implement the required setting.