Skip to content
ATO Pathways
  Log In

CIP-007-3 R5.2

Logo
1

Rule

Severity: Medium
Ensure that Audit Log Forwarding Is Enabled
Logo
1

Rule

Severity: Medium
Configure An Identity Provider
Logo
1

Rule

Severity: Medium
Configure OAuth server so that tokens expire after a set period of inactivity
Logo
1

Rule

Severity: Medium
Configure OAuth tokens to expire after a set period of inactivity
Logo
1

Rule

Severity: Medium
Configure OAuth clients so that tokens expire after a set period of inactivity
Logo
1

Rule

Severity: Medium
Do Not Use htpasswd-based IdP
Logo
1

Rule

Severity: High
Only Use LDAP-based IdPs with TLS
Logo
18

Rule

Severity: Medium
Require Authentication for Single User Mode
Logo
30

Rule

Severity: Low
All GIDs referenced in /etc/passwd must be defined in /etc/group
Logo
28

Rule

Severity: Medium
Verify No netrc Files Exist
Logo
30

Rule

Severity: High
Verify Only Root Has UID 0
Logo
29

Rule

Severity: Medium
Direct root Logins Not Allowed
Logo
23

Rule

Severity: Medium
Set Interactive Session Timeout
Logo
27

Rule

Severity: Medium
Configure auditd mail_acct Action on Low Disk Space
Logo
28

Rule

Severity: Medium
Configure auditd Max Log File Size
Logo
30

Rule

Severity: Medium
Configure auditd Number of Logs Retained
Logo
30

Rule

Severity: High
Ensure SELinux State is Enforcing
Logo
14

Rule

Severity: Medium
Configure auditd flush priority
Logo
29

Rule

Severity: Medium
Set SSH Client Alive Count Max to zero
Logo
29

Rule

Severity: Medium
Set SSH Client Alive Count Max
Logo
29

Rule

Severity: Medium
Set SSH Client Alive Interval
Logo
30

Rule

Severity: Medium
Disable Host-Based Authentication
Logo
30

Rule

Severity: Medium
Disable SSH Root Login
Logo
29

Rule

Severity: Unknown
Limit Users' SSH Access
Logo
13

Rule

Severity: Medium
Ensure SELinux Not Disabled in the kernel arguments
Logo
16

Rule

Severity: Medium
Ensure SELinux Not Disabled in /etc/default/grub
Logo
18

Rule

Severity: Medium
Configure SELinux Policy
Logo
5

Rule

Severity: Medium
Configure Logind to terminate idle sessions after certain time of inactivity
Logo
1

Rule

Severity: Medium
Ensure that the cluster's audit profile is properly set
Logo
1

Rule

Severity: Medium
Verify Permissions on the OpenShift PKI Private Key Files

Patternfly

PatternFly elements

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules