Detections
Analytics

Item Search

NameAudit NamePluginCategory
PHTN-40-000030 The Photon operating system must allow only authorized users to configure the auditd service.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

AUDIT AND ACCOUNTABILITY

PHTN-40-000059 The Photon operating system must use mechanisms meeting the requirements of applicable federal laws, Executive orders, directives, policies, regulations, standards, and guidance for authentication to a cryptographic module.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

IDENTIFICATION AND AUTHENTICATION

PHTN-40-000195 The Photon operating system must include root when automatically locking an account until the locked account is released by an administrator when three unsuccessful logon attempts occur during a 15-minute time period.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

ACCESS CONTROL

PHTN-40-000196 The Photon operating system must persist lockouts between system reboots.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

ACCESS CONTROL

PHTN-40-000206 The Photon operating system must enforce a delay of at least four seconds between logon prompts following a failed logon attempt.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

CONFIGURATION MANAGEMENT

PHTN-40-000214 The Photon operating system must configure Secure Shell (SSH) to disallow Kerberos authentication.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCLD-80-000001 The vCenter VAMI service must limit the number of allowed simultaneous session requests.DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

ACCESS CONTROL

VCLD-80-000031 The vCenter VAMI service must explicitly disable Multipurpose Internet Mail Extensions (MIME) mime mappings based on "Content-Type".DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCLD-80-000035 The vCenter VAMI service must protect system resources and privileged operations from hosted applications.DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCLD-80-000062 The vCenter VAMI service must disable directory listing.DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

SYSTEM AND INFORMATION INTEGRITY

VCLD-80-000063 The vCenter VAMI service must not be configured to use the "mod_status" module.DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

SYSTEM AND INFORMATION INTEGRITY

VCLD-80-000098 The vCenter VAMI service must be configured to hide the server type and version in client responses.DISA VMware vSphere 8.0 vCenter Appliance Management Interface (VAMI) STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCLU-80-000127 The vCenter Lookup service must configure the 'setCharacterEncodingFilter' filter.DISA VMware vSphere 8.0 vCenter Appliance Lookup Service STIG v2r1Unix

SYSTEM AND INFORMATION INTEGRITY

VCLU-80-000134 The vCenter Lookup service shutdown port must be disabled.DISA VMware vSphere 8.0 vCenter Appliance Lookup Service STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCLU-80-000142 The vCenter Lookup service default ROOT web application must be removed.DISA VMware vSphere 8.0 vCenter Appliance Lookup Service STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCLU-80-000155 The vCenter Lookup service host-manager webapp must be removed.DISA VMware vSphere 8.0 vCenter Appliance Lookup Service STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCPF-80-000036 The vCenter Perfcharts service must disable stack tracing.DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCPF-80-000065 The vCenter Perfcharts service must set URIEncoding to UTF-8.DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1Unix

SYSTEM AND INFORMATION INTEGRITY

VCPF-80-000129 The vCenter Perfcharts service cookies must have 'http-only' flag set.DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1Unix

ACCESS CONTROL

VCPF-80-000137 The vCenter Perfcharts service directory listings parameter must be disabled.DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1Unix

CONFIGURATION MANAGEMENT

VCPF-80-000152 The vCenter Perfcharts service must enable 'ENFORCE_ENCODING_IN_GET_WRITER'.DISA VMware vSphere 8.0 vCenter Appliance Perfcharts STIG v2r1Unix

CONFIGURATION MANAGEMENT

VMCH-80-000204 Virtual machines (VMs) must enable encryption for Fault Tolerance.DISA VMware vSphere 8.0 Virtual Machine STIG v2r1VMware

CONFIGURATION MANAGEMENT

VMCH-80-000212 Virtual machines (VMs) must remove unneeded serial devices.DISA VMware vSphere 8.0 Virtual Machine STIG v2r1VMware

CONFIGURATION MANAGEMENT

VMCH-80-000213 Virtual machines (VMs) must remove unneeded USB devices.DISA VMware vSphere 8.0 Virtual Machine STIG v2r1VMware

CONFIGURATION MANAGEMENT

VMCH-80-000214 Virtual machines (VMs) must disable DirectPath I/O devices when not required.DISA VMware vSphere 8.0 Virtual Machine STIG v2r1VMware

CONFIGURATION MANAGEMENT

ZEBR-10-000200 - Zebra Android 10 must be configured to not allow passwords that include more than two repeating or sequential characters - NumbersAirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-000200 - Zebra Android 10 must be configured to not allow passwords that include more than two repeating or sequential characters - TypeMobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-000300 - Zebra Android 10 must be configured to enable a screen-lock policy that will lock the display after a period of inactivity.MobileIron - DISA Zebra Android 10 COBO v1r2MDM

ACCESS CONTROL

ZEBR-10-000300 - Zebra Android 10 must be configured to enable a screen-lock policy that will lock the display after a period of inactivity.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

ACCESS CONTROL

ZEBR-10-000400 - Zebra Android 10 must be configured to lock the display after 15 minutes (or less) of inactivity.MobileIron - DISA Zebra Android 10 COBO v1r2MDM

ACCESS CONTROL

ZEBR-10-001600 - Zebra Android 10 must be configured to not display the following (work profile) notifications when the device is locked:MobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-002800 - Zebra Android 10 must be configured to disable developer modes.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-002800 - Zebra Android 10 must be configured to disable developer modes.MobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-003500 - Zebra Android 10 must be configured to disable USB mass storage mode.AirWatch - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-008700 - Zebra Android 10 users must complete required training.AirWatch - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-008700 - Zebra Android 10 users must complete required training.MobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-009000 - Zebra Android 10 must have the DoD root and intermediate PKI certificates installed.AirWatch - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-009200 - The Zebra Android 10 Work Profile must be configured to prevent users from adding personal email accounts to the work email app.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-009400 - The Zebra Android 10 Work Profile must be configured to enforce the system application disable list.MobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-009600 - Zebra Android 10 must be provisioned as a fully managed device and configured to create a Work Profile.MobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-009800 - Zebra Android 10 Work Profile must be configured to disable automatic completion of work space internet browser text input.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-010000 - Zebra Android 10 Work Profile must be configured to disable the autofill services.MobileIron - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-11-000200 - Zebra Android 11 must be configured to not allow passwords that include more than four repeating or sequential characters.MobileIron - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT

ZEBR-11-000300 - Zebra Android 11 must be configured to enable a screen-lock policy that will lock the display after a period of inactivity.AirWatch - DISA Zebra Android 11 COBO v1r3MDM

ACCESS CONTROL

ZEBR-11-000300 - Zebra Android 11 must be configured to enable a screen-lock policy that will lock the display after a period of inactivity.MobileIron - DISA Zebra Android 11 COBO v1r3MDM

ACCESS CONTROL

ZEBR-11-002800 - Zebra Android 11 must be configured to disable developer modes.AirWatch - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT

ZEBR-11-003500 - Zebra Android 11 must be configured to disable USB mass storage mode.MobileIron - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT

ZEBR-11-008700 - Zebra Android 11 users must complete required training.AirWatch - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT

ZEBR-11-009000 - Zebra Android 11 must have the DoD root and intermediate PKI certificates installed.MobileIron - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT

ZEBR-11-010200 - Zebra Android 11 must be configured to disallow configuration of date and time.AirWatch - DISA Zebra Android 11 COBO v1r3MDM

CONFIGURATION MANAGEMENT