Tanium 7.x Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
Tanium must notify system administrators and the information system security officer (ISSO) for account disabling actions.
<VulnDiscussion>When application accounts are disabled, user accessibility is affected. Accounts are utilized for identifying individual user...Rule Medium Severity -
SRG-APP-000294
<GroupDescription></GroupDescription>Group -
Tanium must notify system administrators and the information system security officer (ISSO) for account removal actions.
<VulnDiscussion>When application accounts are removed, user accessibility is affected. Accounts are utilized for identifying users or for ide...Rule Medium Severity -
SRG-APP-000121
<GroupDescription></GroupDescription>Group -
The Tanium application must prohibit user installation, modification, or deletion of software without explicit privileged status.
<VulnDiscussion>Allowing regular users to install, modify, or delete software, without explicit privileges, creates the risk that the applica...Rule Medium Severity -
SRG-APP-000323
<GroupDescription></GroupDescription>Group -
The Tanium database(s) must be installed on a separate system.
<VulnDiscussion>Failure to protect organizational information from data mining may result in a compromise of information. Data storage objec...Rule Medium Severity -
SRG-APP-000323
<GroupDescription></GroupDescription>Group -
The Tanium application database must be dedicated to only the Tanium application.
<VulnDiscussion>Failure to protect organizational information from data mining may result in a compromise of information. Data storage objec...Rule Medium Severity -
SRG-APP-000381
<GroupDescription></GroupDescription>Group -
The access to the Tanium SQL database must be restricted. Only the designated database administrator(s) can have elevated privileges to the Tanium SQL database.
<VulnDiscussion>After the Tanium Server has been installed and the Tanium databases created, only the Tanium Server needs to access the SQL S...Rule Medium Severity -
SRG-APP-000381
<GroupDescription></GroupDescription>Group -
The Tanium Server installer's account database permissions must be reduced to an appropriate level.
<VulnDiscussion>Creating the "tanium" and "tanium_archive" databases through the Tanium Server installer program or using the database to cre...Rule Medium Severity -
SRG-APP-000383
<GroupDescription></GroupDescription>Group -
Firewall rules must be configured on the Tanium Server for server-to-database communications.
<VulnDiscussion>The Tanium Server can use either a SQL Server relational database management system (RDBMS) installed locally to the same dev...Rule Medium Severity -
SRG-APP-000003
<GroupDescription></GroupDescription>Group -
The Tanium Application Server console must be configured to initiate a session lock after a 15-minute period of inactivity.
<VulnDiscussion>When multifactor authentication is enabled, the Tanium Console will initiate a session lock based on the ActivClient or other...Rule Medium Severity -
SRG-APP-000015
<GroupDescription></GroupDescription>Group -
Tanium Trusted Content providers must be documented.
<VulnDiscussion>A Tanium Sensor, also called content, enables an organization to gather real-time inventory, configuration, and compliance da...Rule Medium Severity -
SRG-APP-000015
<GroupDescription></GroupDescription>Group
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.