I - Mission Critical Public
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000077-GPOS-00045
<GroupDescription></GroupDescription>Group -
Nutanix AOS must prohibit password reuse for a minimum of five generations.
<VulnDiscussion>Password complexity, or strength, is a measure of the effectiveness of a password in resisting attempts at guessing and brute...Rule Medium Severity -
SRG-OS-000383-GPOS-00166
<GroupDescription></GroupDescription>Group -
Nutanix AOS must prohibit the use of cached authenticators.
<VulnDiscussion>If cached authentication information is out-of-date, the validity of the authentication information may be questionable.</...Rule Medium Severity -
SRG-OS-000120-GPOS-00061
<GroupDescription></GroupDescription>Group -
Nutanix AOS pam_unix.so module must be configured in the password-auth file to use a FIPS 140-2 approved cryptographic hashing algorithm for system authentication.
<VulnDiscussion>Unapproved mechanisms used for authentication to the cryptographic module are not verified and therefore, cannot be relied up...Rule High Severity -
SRG-OS-000392-GPOS-00172
<GroupDescription></GroupDescription>Group -
Nutanix AOS must audit all activities performed during nonlocal maintenance and diagnostic sessions.
<VulnDiscussion>If events associated with nonlocal administrative access or diagnostic sessions are not logged, a major tool for assessing an...Rule Medium Severity -
SRG-OS-000478-GPOS-00223
<GroupDescription></GroupDescription>Group -
Nutanix AOS must enable FIPS mode to implement NIST FIPS-validated cryptography.
<VulnDiscussion>Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The operating ...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.