The Tanium Server must be configured to only use Microsoft Active Directory for account management functions.
An XCCDF Rule
Description
<VulnDiscussion>By restricting access to the Tanium Server to only Microsoft Active Directory, user accounts and related permissions can be strictly monitored. Account management will be under the operational responsibility of the System Administrator for the Windows Operation System Active Directory.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>
- ID
- SV-93309r1_rule
- Severity
- Medium
- References
- Updated
Remediation - Manual Procedure
Consult with the Tanium System Administrator to review the documented list of Tanium users.
Compare the list of Tanium users versus the users found in the appropriate Active Directory security groups for the User Roles.
Using a web browser on a system that has connectivity to Tanium, access the Tanium web UI and log on with CAC.