CCI-002699
Perform verification of the correct operation of organization-defined security functions: when the system is in an organization-defined transitional state; upon command by a user with appropriate privileges; and/or on an organization-defined frequency.
The MaaS360 MDM Agent must provide an alert via the trusted channel to the MDM server for the following event: change in enrollment state.
1 rule found Severity: Medium
The Windows 2012 DNS Server must log the event and notify the system administrator when anomalies in the operation of the signed zone transfers are discovered.
1 rule found Severity: Medium
The Ubuntu operating system must be configured so that a file integrity tool verifies the correct operation of security functions every 30 days.
1 rule found Severity: Medium
The Ubuntu operating system must be configured so that the script which runs each 30 days or less to check file integrity is the default one.
1 rule found Severity: Medium
The DNS server implementation must perform verification of the correct operation of security functions: upon system start-up and/or restart; upon command by a user with privileged access; and/or every 30 days.
1 rule found Severity: Medium
1 rule found Severity: Medium
The Windows DNS Server must verify the correct operation of security functions upon startup and/or restart, upon command by a user with privileged access, and/or every 30 days.
1 rule found Severity: Medium
The Windows DNS Server must verify the correct operation of security functions upon system startup and/or restart, upon command by a user with privileged access, and/or every 30 days.
1 rule found Severity: Medium
The Oracle Linux operating system must be configured so that a file integrity tool verifies the baseline operating system configuration at least weekly.
1 rule found Severity: Medium
Advanced Intrusion Detection Environment (AIDE) must verify the baseline SLEM 5 configuration at least weekly.
1 rule found Severity: Medium
The TOSS file integrity tool must notify the system administrator when changes to the baseline configuration or anomalies in the operation of any security functions are discovered within an organizationally defined frequency.
1 rule found Severity: Medium
NixOS must notify designated personnel if baseline configurations are changed in an unauthorized manner.
1 rule found Severity: Medium
Ubuntu 22.04 LTS must be configured so that the script that runs each 30 days or less to check file integrity is the default.
1 rule found Severity: Medium
The application must perform verification of the correct operation of security functions: upon system startup and/or restart; upon command by a user with privileged access; and/or every 30 days.
1 rule found Severity: Medium
The container platform must perform verification of the correct operation of security functions: upon system startup and/or restart; upon command by a user with privileged access; and/or every 30 days. Security functionality includes, but is not limited to, establishing system accounts, configuring access authorizations (i.e., permissions, privileges), setting events to be audited, and setting intrusion detection parameters.
1 rule found Severity: Medium
1 rule found Severity: Medium
AlmaLinux OS 9 must routinely check the baseline configuration for unauthorized changes and notify the system administrator when anomalies in the operation of any security functions are discovered.
1 rule found Severity: Medium
The operating system must perform verification of the correct operation of security functions: upon system start-up and/or restart; upon command by a user with privileged access; and/or every 30 days.
1 rule found Severity: Medium
The Mainframe Product must perform verification of the correct operation of security functions upon system startup and/or restart; upon command by a user with privileged access; and/or every 30 days.
1 rule found Severity: Medium
The OL 8 file integrity tool must notify the System Administrator (SA) when changes to the baseline configuration or anomalies in the operation of any security functions are discovered within an organizationally defined frequency.
1 rule found Severity: Medium
OpenShift must perform verification of the correct operation of security functions: upon startup and/or restart; upon command by a user with privileged access; and/or every 30 days.
1 rule found Severity: Medium
RHEL 9 must routinely check the baseline configuration for unauthorized changes and notify the system administrator when anomalies in the operation of any security functions are discovered.
1 rule found Severity: Medium
Advanced Intrusion Detection Environment (AIDE) must verify the baseline SUSE operating system configuration at least weekly.
2 rules found Severity: Medium
The UEM server must run a suite of self-tests during initial start-up (power on) to demonstrate correct operation of the server.
1 rule found Severity: Medium
The VMM must perform verification of the correct operation of security functions: upon system startup and/or restart; upon command by a user with privileged access; and/or every 30 days.
1 rule found Severity: Medium