II - Mission Support Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000153-AS-000104
<GroupDescription></GroupDescription>Group -
Automation Controller must be configured to authenticate users individually, prior to using a group authenticator.
<VulnDiscussion>Default superuser accounts, such as "root", are considered group authenticators. In the case of Automation Controller this is...Rule Medium Severity -
SRG-APP-000172-AS-000121
<GroupDescription></GroupDescription>Group -
Automation Controller must utilize encryption when using LDAP for authentication.
<VulnDiscussion>To avoid access with malicious intent, passwords will need to be protected at all times. This includes transmission where pas...Rule Medium Severity -
SRG-APP-000290-AS-000174
<GroupDescription></GroupDescription>Group -
Automation Controller must use cryptographic mechanisms to protect the integrity of log tools.
<VulnDiscussion>Protecting the integrity of the tools used for logging purposes is a critical step in ensuring the integrity of log data. Log...Rule Medium Severity -
SRG-APP-000371-AS-000077
<GroupDescription></GroupDescription>Group -
Automation Controller must compare internal application server clocks at least every 24 hours with an authoritative time source.
<VulnDiscussion>When conducting forensic analysis and investigating system events, it is critical that timestamps accurately reflect the time...Rule Medium Severity -
SRG-APP-000427-AS-000264
<GroupDescription></GroupDescription>Group -
Automation Controller must only allow the use of DOD PKI-established certificate authorities for verification of the establishment of protected sessions.
<VulnDiscussion>An untrusted source may leave the system vulnerable to issues such as unauthorized access, reduced data integrity, loss of co...Rule Medium Severity -
SRG-APP-000456-AS-000266
<GroupDescription></GroupDescription>Group -
Automation Controller must install security-relevant software updates within the time period directed by an authoritative source (e.g. IAVM, CTOs, DTMs, and STIGs).
<VulnDiscussion>Security relevant software updates must be installed within the timeframes directed by an authoritative source in order to ma...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.