Skip to content
ATO Pathways
  Log In

CCI-002009

Accept Personal Identity Verification-compliant credentials from other federal agencies.

Logo
1

Rule

Severity: High
Compliance Guardian must use multifactor authentication for network access to privileged accounts.
Logo
2

Rule

Severity: Medium
The application server must accept Personal Identity Verification (PIV) credentials from other federal agencies to access the management interface.
Logo
2

Rule

Severity: Medium
The application must accept Personal Identity Verification (PIV) credentials from other federal agencies.
Logo
1

Rule

Severity: Medium
SAML integration must be enabled in Docker Enterprise.
Logo
2

Rule

Severity: High
Multifactor authentication for network access to privileged accounts must be used.
Logo
1

Rule

Severity: Medium
The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.
Logo
1

Rule

Severity: Medium
The WebSphere Application Server must accept Personal Identity Verification (PIV) credentials from other federal agencies to access the management interface.
Logo
2

Rule

Severity: Medium
The Mainframe Product must accept Personal Identity Verification (PIV) credentials from other federal agencies.
Logo
1

Rule

Severity: Medium
Nutanix AOS must accept Personal Identity Verification (PIV) credentials to access the management interface.
Logo
2

Rule

Severity: Medium
Prisma Cloud Compute must be configured to require local user accounts to use x.509 multifactor authentication.
Logo
1

Rule

Severity: High
Innoslate must use multifactor authentication for network access to privileged and non-privileged accounts.
Logo
2

Rule

Severity: Medium
Common Access Card (CAC)-based authentication must be enabled and enforced on the Tanium Server for all access and all accounts.
Logo
2

Rule

Severity: Medium
The Tanium application must accept Personal Identity Verification (PIV) credentials from other federal agencies.
Logo
1

Rule

Severity: Medium
Multi-factor authentication must be enabled and enforced on the Tanium Server for all access and all accounts.
Logo
2

Rule

Severity: Medium
Multifactor certificate-based tokens (CAC) must be used when accessing the management interface.
Logo
2

Rule

Severity: Medium
The container platform must accept Personal Identity Verification (PIV) credentials from other federal agencies.
Logo
2

Rule

Severity: Medium
Automation Controller must be configured to use an enterprise user management system.
Logo
2

Rule

Severity: High
OpenShift must use FIPS validated LDAP or OpenIDConnect.
Logo
4

Rule

Severity: Medium
The vCenter Server must require multifactor authentication.
Logo
1

Rule

Severity: Medium
Dragos Platform must accept the DOD CAC or other PKI credential for identity management and personal authentication.
Logo
1

Rule

Severity: Medium
MKE must be configured to integrate with an Enterprise Identity Provider.
Logo
1

Rule

Severity: Medium
Multifactor authentication must be enabled and enforced on the Tanium Server for all access and all accounts.

Patternfly

PatternFly elements

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules