STIGQter STIGQter: STIG Summary: Authentication, Authorization, and Accounting Services (AAA) Security Requirements Guide Version: 1 Release: 2 Benchmark Date: 24 Jan 2020:

AAA Services must be configured to protect the confidentiality and integrity of all information at rest.

DISA Rule

SV-95643r1_rule

Vulnerability Number

V-80933

Group Title

SRG-APP-000231-AAA-000610

Rule Version

SRG-APP-000231-AAA-000610

Severity

CAT I

CCI(s)

Weight

10

Fix Recommendation

Configure AAA Services to protect the confidentiality and integrity of all information at rest. AAA Services may leverage the capability of an operating system or require the use of a purpose-built module for this purpose. Potential locations include the local file system where configurations and events are stored or in a related database table.

Check Contents

Verify AAA Services are configured to protect the confidentiality and integrity of all information at rest. AAA Services may leverage the capability of an operating system or purpose-built module for this purpose. Potential locations include the local file system where configurations and events are stored or in a related database table.

If AAA Services are not configured to protect the confidentiality and integrity of all information at rest, this is a finding.

Vulnerability Number

V-80933

Documentable

False

Rule Version

SRG-APP-000231-AAA-000610

Severity Override Guidance

Verify AAA Services are configured to protect the confidentiality and integrity of all information at rest. AAA Services may leverage the capability of an operating system or purpose-built module for this purpose. Potential locations include the local file system where configurations and events are stored or in a related database table.

If AAA Services are not configured to protect the confidentiality and integrity of all information at rest, this is a finding.

Check Content Reference

M

Target Key

3357

Comments