Skip to content

Tanium 7.3 Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • The SSLHonorCipherOrder must be configured to disable weak encryption algorithms on the Tanium Server.

    <VulnDiscussion>Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The applicatio...
    Rule Medium Severity
  • SRG-APP-000427

    <GroupDescription></GroupDescription>
    Group
  • The Tanium Server certificate must be signed by a DoD Certificate Authority.

    &lt;VulnDiscussion&gt;The Tanium Server has the option to use a "self-signed" certificate or a Trusted Certificate Authority signed certificate for...
    Rule Medium Severity
  • SRG-APP-000442

    <GroupDescription></GroupDescription>
    Group
  • Any Tanium configured EMAIL RESULTS connectors must be configured to enable TLS/SSL to encrypt communications.

    &lt;VulnDiscussion&gt;Information can be either unintentionally or maliciously disclosed or modified during preparation for transmission including,...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules