I - Mission Critical Classified
Rules and Groups employed by this XCCDF Profile
-
DRAG-OT-000610
<GroupDescription></GroupDescription>Group -
Dragos must allow only the individuals appointed by the information system security manager (ISSM) to have full admin rights to the system.
<VulnDiscussion>Without restricting which roles and individuals can select which events are audited, unauthorized personnel may be able to pr...Rule Medium Severity -
DRAG-OT-001910
<GroupDescription></GroupDescription>Group -
The Dragos Platform must only allow the use of DOD PKI established certificate authorities for verification of the establishment of protected sessions.
<VulnDiscussion>Untrusted Certificate Authorities (CA) can issue certificates, but they may be issued by organizations or individuals that se...Rule Medium Severity -
DRAG-OT-000090
<GroupDescription></GroupDescription>Group -
Dragos Platform must use an Identity Provider (IDP) for authentication and authorization processes.
<VulnDiscussion>Enterprise environments make application account management challenging and complex. A manual process for account management ...Rule Medium Severity -
DRAG-OT-001630
<GroupDescription></GroupDescription>Group -
The Syslog client must use TCP connections.
<VulnDiscussion>Removal of unneeded or nonsecure functions, ports, protocols, and services mitigate the risk of unauthorized connection of de...Rule Medium Severity -
DRAG-OT-000240
<GroupDescription></GroupDescription>Group -
The Dragos Platform must only allow local administrative and service user accounts.
<VulnDiscussion>Only two default accounts facilitate the initial setup and configuration of the Platform. These accounts provide immediate ac...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.