III - Administrative Sensitive

Rules and Groups employed by this XCCDF Profile

SRG-APP-000153-AS-000104

Group

Show

Automation Controller must be configured to authenticate users individually, prior to using a group authenticator.

<VulnDiscussion>Default superuser accounts, such as "root", are considered group authenticators. In the case of Automation Controller this is...

Rule Medium Severity

Show

SRG-APP-000172-AS-000121

Group

Show

Automation Controller must utilize encryption when using LDAP for authentication.

<VulnDiscussion>To avoid access with malicious intent, passwords will need to be protected at all times. This includes transmission where pas...

Rule Medium Severity

Show

SRG-APP-000290-AS-000174

Group

Show

Automation Controller must use cryptographic mechanisms to protect the integrity of log tools.

<VulnDiscussion>Protecting the integrity of the tools used for logging purposes is a critical step in ensuring the integrity of log data. Log...

Rule Medium Severity

Show

SRG-APP-000371-AS-000077

Group

Show

Automation Controller must compare internal application server clocks at least every 24 hours with an authoritative time source.

<VulnDiscussion>When conducting forensic analysis and investigating system events, it is critical that timestamps accurately reflect the time...

Rule Medium Severity

Show

SRG-APP-000427-AS-000264

Group

Show

Automation Controller must only allow the use of DOD PKI-established certificate authorities for verification of the establishment of protected sessions.

<VulnDiscussion>An untrusted source may leave the system vulnerable to issues such as unauthorized access, reduced data integrity, loss of co...

Rule Medium Severity

Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity

Modules