Stay Informed
of New Reports
Twitter
Where To Report Waste
Fraud, Abuse, Or Retaliation
Where To Report Waste Fraud, Abuse, Or Retaliation

Remote Application and Desktop Virtualization Client

Submitting OIG: 
Tennessee Valley Authority OIG
Report Description: 
The Office of the Inspector General audited the Tennessee Valley Authority’s (TVA) use of remote application and desktop virtualization client due to the risks of (1) potential system intrusion through misconfigurations and (2) continued elevated remote users during the COVID-19 pandemic. We found the configuration management control for TVA’s remote application desktop virtualization client was ineffective. However, we determined compensating access controls were in place to mitigate the risk to an overall acceptable level.
Date Issued: 
Wednesday, June 21, 2023
Agency Reviewed / Investigated: 
Tennessee Valley Authority
Submitting OIG-Specific Report Number: 
2022-17390
Location(s): 
Agency-Wide
Type of Report: 
Audit
Special Projects: 
Pandemic
Questioned Costs: 
$0
Funds for Better Use: 
$0
Number of Recommendations: 
1
Report updated under NDAA 5274: 
No
View Document: 
AttachmentSize
PDF icon 2022-17390.pdf559.68 KB

Related Open Recommendations

Recommendation Number Recommendation Status Significant Recommendation Additional Details
1 Open No
We recommend the Vice President and Chief Information and Digital Officer, Technology and Information, design and implement a documented configuration management process of TVA’s remote application and desktop virtualization client.
Displaying 1 of 1 Recommendations