Detections
Analytics

DISA STIG VMware vSphere 6.7 Photon OS v1r3

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG VMware vSphere 6.7 Photon OS v1r3

Updated: 4/12/2023

Authority: Operating Systems and Applications

Plugin: Unix

Revision: 1.3

Estimated Item Count: 202

Audit Items

DescriptionCategories
DISA_STIG_VMware_vSphere_6.7_Photon_OS_v1r3.audit from DISA VMware vSphere 6.7 Photon OS v1r3 STIG
PHTN-67-000001 - The Photon operating system must audit all account creations - groupadd
PHTN-67-000001 - The Photon operating system must audit all account creations - useradd
PHTN-67-000002 - The Photon operating system must automatically lock an account when three unsuccessful logon attempts occur.
PHTN-67-000003 - The Photon operating system must display the Standard Mandatory DoD Notice and Consent Banner before granting SSH access - content
PHTN-67-000003 - The Photon operating system must display the Standard Mandatory DoD Notice and Consent Banner before granting SSH access - ssh
PHTN-67-000004 - The Photon operating system must limit the number of concurrent sessions to 10 for all accounts and/or account types.
PHTN-67-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less - duration
PHTN-67-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less - export
PHTN-67-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less - mesg
PHTN-67-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less - readonly
PHTN-67-000006 - The Photon operating system must have the sshd SyslogFacility set to 'authpriv' - authpriv.
PHTN-67-000007 - The Photon operating system must have sshd authentication logging enabled.
PHTN-67-000008 - The Photon operating system must have the sshd LogLevel set to 'INFO' - INFO.
PHTN-67-000009 - The Photon operating system must configure sshd to use approved encryption algorithms.
PHTN-67-000010 - The Photon operating system must configure auditd to log to disk.
PHTN-67-000011 - The Photon operating system must configure auditd to use the correct log format.
PHTN-67-000012 - The Photon operating system must be configured to audit the execution of privileged functions - gid 32
PHTN-67-000012 - The Photon operating system must be configured to audit the execution of privileged functions - gid 64
PHTN-67-000012 - The Photon operating system must be configured to audit the execution of privileged functions - uid 32
PHTN-67-000012 - The Photon operating system must be configured to audit the execution of privileged functions - uid 64
PHTN-67-000013 - The Photon operating system audit log must log space limit problems to syslog.
PHTN-67-000014 - The Photon operating system audit log must attempt to log audit failures to syslog - admin_space_left_action
PHTN-67-000014 - The Photon operating system audit log must attempt to log audit failures to syslog - disk_error_action
PHTN-67-000014 - The Photon operating system audit log must attempt to log audit failures to syslog - disk_full_action
PHTN-67-000015 - The Photon operating system audit log must have correct permissions.
PHTN-67-000016 - The Photon operating system audit log must be owned by root.
PHTN-67-000017 - The Photon operating system audit log must be group-owned by root.
PHTN-67-000018 - The Photon operating system must have the auditd service running.
PHTN-67-000019 - The Photon operating system must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.
PHTN-67-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur - 32
PHTN-67-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur - 64
PHTN-67-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur - uid 32
PHTN-67-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur - uid 64
PHTN-67-000021 - The Photon operating system must enforce password complexity by requiring that at least one uppercase character be used.
PHTN-67-000022 - The Photon operating system must enforce password complexity by requiring that at least one lowercase character be used.
PHTN-67-000023 - The Photon operating system must enforce password complexity by requiring that at least one numeric character be used.
PHTN-67-000024 - The Photon operating system must require that new passwords are at least four characters different from the old password.
PHTN-67-000025 - The Photon operating system must store only encrypted representations of passwords.
PHTN-67-000026 - The Photon operating system must store only encrypted representations of passwords.
PHTN-67-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.
PHTN-67-000028 - The Photon operating system must be configured so that passwords for new users are restricted to a 90-day maximum lifetime.
PHTN-67-000029 - The Photon operating system must prohibit password reuse for a minimum of five generations.
PHTN-67-000030 - The Photon operating system must ensure old passwords are being stored.
PHTN-67-000031 - The Photon operating system must enforce a minimum eight-character password length.
PHTN-67-000032 - The Photon operating system must only allow installation of packages signed by VMware.
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - appletalk
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - bluetooth
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - cramfs
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - dccp