Detections
Analytics

DISA STIG VMware vSphere 7.0 Photon OS v1r3

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA STIG VMware vSphere 7.0 Photon OS v1r3

Updated: 4/3/2025

Authority: DISA STIG

Plugin: Unix

Revision: 1.3

Estimated Item Count: 114

File Details

Filename: DISA_STIG_VMware_vSphere_7.0_Photon_OS_v1r3.audit

Size: 205 kB

MD5: c089b2de5fc1414a598d8255fcfba3f5
SHA256: 260ace506b5ea362501d10464dc11725cf2ba0f696cf8ba0bb841a1ef06725fe

Audit Items

DescriptionCategories
DISA_STIG_VMware_vSphere_7.0_Photon_OS_v1r3.audit from DISA VMware vSphere 7.0 vCenter Appliance Photon OS v1r3 STIG
PHTN-30-000001 - The Photon operating system must audit all account creations.
PHTN-30-000002 - The Photon operating system must automatically lock an account when three unsuccessful logon attempts occur.
PHTN-30-000003 - The Photon operating system must display the Standard Mandatory DOD Notice and Consent Banner before granting Secure Shell (SSH) access.
PHTN-30-000004 - The Photon operating system must limit the number of concurrent sessions to 10 for all accounts and/or account types.
PHTN-30-000005 - The Photon operating system must set a session inactivity timeout of 15 minutes or less.
PHTN-30-000006 - The Photon operating system must have the sshd SyslogFacility set to 'authpriv'.
PHTN-30-000007 - The Photon operating system must have sshd authentication logging enabled.
PHTN-30-000008 - The Photon operating system must have the sshd LogLevel set to 'INFO'.
PHTN-30-000009 - The Photon operating system must configure sshd to use approved encryption algorithms.
PHTN-30-000010 - The Photon operating system must configure auditd to log to disk.
PHTN-30-000011 - The Photon operating system must configure auditd to use the correct log format.
PHTN-30-000012 - The Photon operating system must be configured to audit the execution of privileged functions.
PHTN-30-000013 - The Photon operating system must have the auditd service running.
PHTN-30-000014 - The Photon operating system audit log must log space limit problems to syslog.
PHTN-30-000015 - The Photon operating system audit log must attempt to log audit failures to syslog.
PHTN-30-000016 - The Photon operating system audit log must have correct permissions.
PHTN-30-000017 - The Photon operating system audit log must be owned by root.
PHTN-30-000018 - The Photon operating system audit log must be group-owned by root.
PHTN-30-000019 - The Photon operating system must allow only the information system security manager (ISSM) (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited.
PHTN-30-000020 - The Photon operating system must generate audit records when successful/unsuccessful attempts to access privileges occur.
PHTN-30-000021 - The Photon operating system must enforce password complexity by requiring that at least one uppercase character be used.
PHTN-30-000022 - The Photon operating system must enforce password complexity by requiring that at least one lowercase character be used.
PHTN-30-000023 - The Photon operating system must enforce password complexity by requiring that at least one numeric character be used.
PHTN-30-000024 - The Photon operating system must require that new passwords are at least four characters different from the old password.
PHTN-30-000025 - The Photon operating system must store only encrypted representations of passwords.
PHTN-30-000026 - The Photon operating system must use an OpenSSH server version that does not support protocol 1.
PHTN-30-000027 - The Photon operating system must be configured so that passwords for new users are restricted to a 24-hour minimum lifetime.
PHTN-30-000028 - The Photon operating system must be configured so that passwords for new users are restricted to a 90-day maximum lifetime.
PHTN-30-000029 - The Photon operating system must prohibit password reuse for a minimum of five generations.
PHTN-30-000030 - The Photon operating system must enforce a minimum eight-character password length.
PHTN-30-000031 - The Photon operating system must require authentication upon booting into single-user and maintenance modes.
PHTN-30-000032 - The Photon operating system must disable the loading of unnecessary kernel modules.
PHTN-30-000033 - The Photon operating system must not have duplicate User IDs (UIDs).
PHTN-30-000035 - The Photon operating system must disable new accounts immediately upon password expiration.
PHTN-30-000036 - The Photon operating system must use Transmission Control Protocol (TCP) syncookies.
PHTN-30-000037 - The Photon operating system must configure sshd to disconnect idle Secure Shell (SSH) sessions.
PHTN-30-000038 - The Photon operating system must configure sshd to disconnect idle Secure Shell (SSH) sessions.
PHTN-30-000040 - The Photon operating system '/var/log' directory must be owned by root.
PHTN-30-000041 - The Photon operating system messages file must have the correct ownership and file permissions.
PHTN-30-000042 - The Photon operating system must audit all account modifications.
PHTN-30-000043 - The Photon operating system must audit all account modifications.
PHTN-30-000044 - The Photon operating system must audit all account disabling actions.
PHTN-30-000045 - The Photon operating system must audit all account removal actions.
PHTN-30-000046 - The Photon operating system must initiate auditing as part of the boot process.
PHTN-30-000047 - The Photon operating system audit files and directories must have correct permissions.
PHTN-30-000048 - The Photon operating system must protect audit tools from unauthorized modification and deletion.
PHTN-30-000050 - The Photon operating system must enforce password complexity by requiring that at least one special character be used.
PHTN-30-000051 - The Photon operating system package files must not be modified.
PHTN-30-000054 - The Photon operating system must audit the execution of privileged functions.