History
- Priority
- must
- Nov 2018
- Removed
- Removed due to relating to PEAP and EAP-TTLS which are not recommended for 802.1X authentication on wireless networks.
- 2017
- Devices must be configured to validate the server certificate, disable any trust for certificatesgenerated by commercial certificate authorities that are not trusted and disable the ability toprompt users to authorise new servers or commercial certification authorities.
- 2015
- Devices must be configured to validate the server certificate, disable any trust for certificatesgenerated by commercial certificate authorities that are not trusted and disable the ability toprompt users to authorise new servers or commercial certification authorities.