STIGQter STIGQter: STIG Summary: Tanium 6.5 Security Technical Implementation Guide Version: 1 Release: 2 Benchmark Date: 28 Oct 2016: Firewall rules must be configured on the Tanium Server for Server-to-Database communications.

DISA Rule

SV-81521r1_rule

Vulnerability Number

V-67031

Group Title

SRG-APP-000383

Rule Version

TANS-DB-000005

Severity

CAT II

CCI(s)

Weight

10

Fix Recommendation

Configure host-based and network firewall rules as required.

Check Contents

Consult with the Tanium System Administrator to verify which firewall is being used as a host-based firewall on the Tanium Server.

Access the host-based firewall configuration on the Tanium Server.

Validate a rule exists for the following:
Port Needed: Tanium Server to Remote SQL Server over TCP port 1433.

If a host-based firewall rule does not exist to allow Tanium Server to Remote SQL Server over TCP port 1433, this is a finding.

Consult with the network firewall administrator and validate rules exist for the following:
Allow traffic from Tanium Server to Remote SQL Server over TCP port 1433.

If a network firewall rule does not exist to allow traffic from Tanium Server to Remote SQL Server over TCP port 1433, this is a finding.

Vulnerability Number

V-67031

Documentable

False

Rule Version

TANS-DB-000005

Severity Override Guidance

Consult with the Tanium System Administrator to verify which firewall is being used as a host-based firewall on the Tanium Server.

Access the host-based firewall configuration on the Tanium Server.

Validate a rule exists for the following:
Port Needed: Tanium Server to Remote SQL Server over TCP port 1433.

If a host-based firewall rule does not exist to allow Tanium Server to Remote SQL Server over TCP port 1433, this is a finding.

Consult with the network firewall administrator and validate rules exist for the following:
Allow traffic from Tanium Server to Remote SQL Server over TCP port 1433.

If a network firewall rule does not exist to allow traffic from Tanium Server to Remote SQL Server over TCP port 1433, this is a finding.

Check Content Reference

M

Target Key

2965

Comments