III - Administrative Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000442
Group -
Any Tanium configured EMAIL RESULTS connectors must be configured to enable TLS/SSL to encrypt communications.
Information can be either unintentionally or maliciously disclosed or modified during preparation for transmission including, for example, during aggregation, at protocol transformation points, and...Rule Medium Severity -
SRG-APP-000516
Group -
Tanium Server files must be excluded from on-access antivirus actions.
Similar to any other host-based applications, the Tanium Server is subject to the restrictions other System-level software may place on an operating environment. Antivirus, IPS, Encryption, or othe...Rule Medium Severity -
SRG-APP-000068
Group -
The Tanium Server console must be configured to display the Standard Mandatory DoD Notice and Consent Banner before granting access to The Tanium Server.
Display of the DoD-approved use notification before granting access to the application ensures privacy and security notification verbiage used is consistent with applicable federal laws, Executive ...Rule Medium Severity -
SRG-APP-000069
Group -
The Tanium Server console must be configured to retain the Standard Mandatory DoD Notice and Consent Banner on the screen until users acknowledge the usage conditions and take explicit actions to log on for further access.
The banner must be acknowledged by the user prior to allowing the user access to the application. This provides assurance that the user has seen the message and accepted the conditions for access. ...Rule Medium Severity -
SRG-APP-000516
Group -
Tanium Server files must be protected from file encryption actions.
Similar to any other host-based applications, the Tanium Server is subject to the restrictions other System-level software may place on an operating environment. Antivirus, Encryption, or other sec...Rule Medium Severity -
SRG-APP-000001
Group -
The Tanium max_soap_sessions_total setting must be explicitly enabled to limit the number of simultaneous sessions.
Application management includes the ability to control the number of users and user sessions that utilize an application. Limiting the number of allowed users and sessions per user is helpful in li...Rule Medium Severity -
SRG-APP-000001
Group -
The Tanium max_soap_sessions_per_user setting must be explicitly enabled to limit the number of simultaneous sessions.
Application management includes the ability to control the number of users and user sessions that utilize an application. Limiting the number of allowed users and sessions per user is helpful in li...Rule Medium Severity -
SRG-APP-000039
Group -
The Tanium documentation identifying recognized and trusted folders for IOC Detect Folder streams must be maintained.
An IOC stream is a series or "stream" of IOCs that are imported from a vendor based on a subscription service or manually downloaded and placed in a folder. IOC Detect can be configured to retrieve...Rule Medium Severity -
SRG-APP-000039
Group -
The Tanium IOC Detect Folder streams must be configured to restrict access to only authorized maintainers of IOCs.
An IOC stream is a series or "stream" of IOCs that are imported from a vendor based on a subscription service or manually downloaded and placed in a folder. IOC Detect can be configured to retrieve...Rule Medium Severity -
SRG-APP-000039
Group -
The Tanium documentation identifying recognized and trusted SCAP feeds must be maintained.
NIST validated SCAP XML documents are provided from several possible sources such as DISA, NIST, and the other non-government entities. These documents are used as the basis of compliance definitio...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.