II - Mission Support Public
Rules and Groups employed by this XCCDF Profile
-
Nutanix AOS pam_unix.so module must be configured in the password-auth file to use a FIPS 140-2 approved cryptographic hashing algorithm for system authentication.
<VulnDiscussion>Unapproved mechanisms used for authentication to the cryptographic module are not verified and therefore, cannot be relied up...Rule High Severity -
SRG-OS-000392-GPOS-00172
<GroupDescription></GroupDescription>Group -
Nutanix AOS must audit all activities performed during nonlocal maintenance and diagnostic sessions.
<VulnDiscussion>If events associated with nonlocal administrative access or diagnostic sessions are not logged, a major tool for assessing an...Rule Medium Severity -
SRG-OS-000478-GPOS-00223
<GroupDescription></GroupDescription>Group -
Nutanix AOS must enable FIPS mode to implement NIST FIPS-validated cryptography.
<VulnDiscussion>Use of weak or untested encryption algorithms undermines the purposes of utilizing encryption to protect data. The operating ...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.
Capacity
Modules