Skip to content
Log In

I - Mission Critical Public

Rules and Groups employed by this XCCDF Profile

  • SRG-APP-000148-DB-000103

    Group
    Show

  • Redis Enterprise DBMS must uniquely identify and authenticate organizational users (or processes acting on behalf of organizational users).

    Redis Enterprise allows the user to configure unique users per role. Review roles and ensure roles use unique organizational principles per user to the database. Redis does come with a default user...
    Rule Medium Severity
    Show

  • SRG-APP-000171-DB-000074

    Group
    Show

  • If passwords are used for authentication, Redis Enterprise DBMS must store only hashed, salted representations of passwords.

    The DOD standard for authentication is DOD-approved PKI certificates. Authentication based on User ID and Password may be used only when it is not possible to employ a PKI certificate, and require...
    Rule Medium Severity
    Show

  • SRG-APP-000400-DB-000367

    Group
    Show

  • Redis Enterprise DBMS must prohibit the use of cached authenticators after an organization-defined time period.

    If cached authentication information is out of date, the validity of the authentication information may be questionable. For more information on configuring time out periods on Redis Enterprise re...
    Rule Medium Severity
    Show

  • SRG-APP-000175-DB-000067

    Group
    Show

  • Redis Enterprise DBMS, when utilizing PKI-based authentication, must validate certificates by performing RFC 5280-compliant certification path validation.

    The DoD standard for authentication is DoD-approved PKI certificates. A certificate's certification path is the path from the end entity certificate to a trusted root certification authority (CA)....
    Rule Medium Severity
    Show

  • SRG-APP-000176-DB-000068

    Group
    Show

  • Redis Enterprise DBMS must enforce authorized access to all PKI private keys stored/used by Redis Enterprise DBMS.

    The DoD standard for authentication is DoD-approved PKI certificates. PKI certificate-based authentication is performed by requiring the certificate holder to cryptographically prove possession of ...
    Rule High Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules