Capacity
CCI-001159
Issue public key certificates under an organization-defined certificate policy or obtain public key certificates from an approved service provider.
1
Rule
Severity: Medium
The A10 Networks ADC must use DoD-approved PKI rather than proprietary or self-signed device certificates.
2
Rule
Severity: Medium
The Arista network device must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The DBN-6300 must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The FortiGate device must use DoD-approved Certificate Authorities (CAs) for public key certificates.
2
Rule
Severity: Medium
CounterACT must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
Forescout must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The HP FlexFabric Switch must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The HYCU server must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The DataPower Gateway must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The MQ Appliance network device must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
MobileIron Sentry must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The Juniper router must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The Juniper SRX Services Gateway must use DoD-approved PKI rather than proprietary or self-signed device certificates.
1
Rule
Severity: Low
If a certificate is used for the SCOM web console, this certificate must be generated by a DoD CA or CA approved by the organization.
2
Rule
Severity: Medium
ONTAP must use DoD-approved PKI rather than proprietary or self-signed device certificates.
2
Rule
Severity: Medium
The network device must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The Riverbed NetProfiler must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
Riverbed Optimization System (RiOS) must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The SEL-2740S must be adopted by OTSDN Controller(s) and obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
Symantec ProxySG must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The TippingPoint SMS must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The NSX-T Manager must obtain its public key certificates from an approved DoD certificate authority.
2
Rule
Severity: Medium
The Cisco ASA must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
6
Rule
Severity: Medium
The Cisco router must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
6
Rule
Severity: Medium
The Cisco switch must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The Cisco ISE must use DoD-approved PKI rather than proprietary or self-signed device certificates.
2
Rule
Severity: Medium
The HPE Nimble must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The ICS must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The Juniper EX switch must be configured to obtain its public key certificates from an appropriate certificate policy through an approved service provider.
2
Rule
Severity: Medium
The Palo Alto Networks security platform must use DoD-approved PKI rather than proprietary or self-signed device certificates.
1
Rule
Severity: Medium
The BIG-IP appliance must be configured to obtain its public key certificates from an appropriate certificate policy through a DoD-approved service provider.
1
Rule
Severity: Medium
The F5 BIG-IP appliance must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
Sentry must obtain its public key certificates from an appropriate certificate policy through an approved service provider.
1
Rule
Severity: Medium
The Juniper SRX Services Gateway must use DOD-approved PKI rather than proprietary or self-signed device certificates.
Patternfly
PatternFly elements
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Modules