FFOX-00-000016 - Firefox must have the DOD root certificates installed.

Information

The DOD root certificates will ensure that the trust chain is established for server certificates issued from the DOD Certificate Authority (CA).

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Install the DOD root certificates. Other AO-approved certificates may also be used. Certificates designed for SIPRNet may be used as appropriate.

On Windows, import certificates from the operating system by using Certificates >> Import Enterprise Roots (Certificates) via policy or Group Policy Object (GPO).

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MOZ_Firefox_V6R5_STIG.zip

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(2)(a), CAT|II, CCI|CCI-000185, Rule-ID|SV-251560r918133_rule, STIG-ID|FFOX-00-000016, Vuln-ID|V-251560

Plugin: Unix

Control ID: 660e73b9225986d2170164c50a1f99c71f88a8f13e3a861ba96db38674d9b59e