CCI-001954
Electronically verifies Personal Identity Verification-compliant credentials.
1 rule found Severity: High
1 rule found Severity: Medium
1 rule found Severity: Medium
The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.
1 rule found Severity: Medium
WebGUI access to the MQ Appliance network device must electronically verify Personal Identity Verification (PIV) credentials.
1 rule found Severity: Medium
Nutanix AOS must accept Personal Identity Verification (PIV) credentials to access the management interface.
1 rule found Severity: Medium
Innoslate must use multifactor authentication for network access to privileged and non-privileged accounts.
1 rule found Severity: High
Common Access Card (CAC)-based authentication must be enabled and enforced on the Tanium Server for all access and all accounts.
2 rules found Severity: Medium
Multi-factor authentication must be enabled and enforced on the Tanium Server for all access and all accounts.
1 rule found Severity: Medium
The macOS system must accept and verify Personal Identity Verification (PIV) credentials, implement a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network, and only allow the use of DoD PKI-established certificate authorities for verification of the establishment of protected sessions.
1 rule found Severity: Medium
The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.
1 rule found Severity: Medium
The Ubuntu operating system must implement certificate status checking for multifactor authentication.
1 rule found Severity: Medium
The Red Hat Enterprise Linux operating system must uniquely identify and must authenticate users using multifactor authentication via a graphical user logon.
1 rule found Severity: Medium
The Red Hat Enterprise Linux operating system must have the required packages for multifactor authentication installed.
1 rule found Severity: Medium
The Red Hat Enterprise Linux operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).
1 rule found Severity: Medium
The Red Hat Enterprise Linux operating system must implement certificate status checking for PKI authentication.
1 rule found Severity: Medium
1 rule found Severity: Medium
The macOS system must accept and verify Personal Identity Verification (PIV) credentials, implement a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network, and only allow the use of DOD PKI-established certificate authorities for verification of the establishment of protected sessions.
1 rule found Severity: Medium
The Ubuntu operating system must electronically verify Personal Identity Verification (PIV) credentials.
1 rule found Severity: Medium
1 rule found Severity: Medium
The ICS must be configured to use multifactor authentication (e.g., DOD PKI) for network access to nonprivileged accounts.
1 rule found Severity: High
The Oracle Linux operating system must have the required packages for multifactor authentication installed.
1 rule found Severity: Medium
The Oracle Linux operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).
1 rule found Severity: Medium
The Oracle Linux operating system must implement certificate status checking for PKI authentication.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
SLEM 5 must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).
1 rule found Severity: Medium
1 rule found Severity: Medium
Multifactor authentication must be enabled and enforced on the Tanium Server for all access and all accounts.
1 rule found Severity: Medium
1 rule found Severity: Medium
NixOS must implement multifactor authentication for remote access to privileged accounts in such a way that one of the factors is provided by a device separate from the system gaining access.
1 rule found Severity: Medium
The application server must electronically verify Personal Identity Verification (PIV) credentials for access to the management interface.
1 rule found Severity: High
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
The cloud service offering (CSO) must be configured to use DOD public key infrastructure (PKI) to uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users).
1 rule found Severity: Medium
Dragos Platform must accept the DOD CAC or other PKI credential for identity management and personal authentication.
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium
The SUSE operating system must have the packages required for multifactor authentication to be installed.
2 rules found Severity: Medium
The SUSE operating system must implement certificate status checking for multifactor authentication.
2 rules found Severity: Medium
The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).
2 rules found Severity: Medium
1 rule found Severity: Medium
3 rules found Severity: Medium
1 rule found Severity: Medium
1 rule found Severity: Medium