II - Mission Support Classified
Rules and Groups employed by this XCCDF Profile
-
SRG-APP-000294
<GroupDescription></GroupDescription>Group -
Tanium must notify system administrators and the information system security officer (ISSO) for account removal actions.
<VulnDiscussion>When application accounts are removed, user accessibility is affected. Accounts are utilized for identifying users or for ide...Rule Medium Severity -
SRG-APP-000121
<GroupDescription></GroupDescription>Group -
The Tanium application must prohibit user installation, modification, or deletion of software without explicit privileged status.
<VulnDiscussion>Allowing regular users to install, modify, or delete software, without explicit privileges, creates the risk that the applica...Rule Medium Severity -
SRG-APP-000323
<GroupDescription></GroupDescription>Group -
The Tanium database(s) must be installed on a separate system.
<VulnDiscussion>Failure to protect organizational information from data mining may result in a compromise of information. Data storage objec...Rule Medium Severity -
SRG-APP-000323
<GroupDescription></GroupDescription>Group -
The Tanium application database must be dedicated to only the Tanium application.
<VulnDiscussion>Failure to protect organizational information from data mining may result in a compromise of information. Data storage objec...Rule Medium Severity -
SRG-APP-000381
<GroupDescription></GroupDescription>Group -
The access to the Tanium SQL database must be restricted. Only the designated database administrator(s) can have elevated privileges to the Tanium SQL database.
<VulnDiscussion>After the Tanium Server has been installed and the Tanium databases created, only the Tanium Server needs to access the SQL S...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.