Theme

CCI|CCI-001190

Title

The information system fails to an organization-defined known-state for organization-defined types of failures.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

Name	Plugin	Audit Name
AS24-U1-000550 - The Apache web server must be built to fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r5
AS24-U1-000550 - The Apache web server must be built to fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG Apache Server 2.4 Unix Server v2r5 Middleware
AS24-U2-000540 - The Apache web server must augment re-creation to a stable and known baseline.	Unix	DISA STIG Apache Server 2.4 Unix Site v2r2 Middleware
AS24-U2-000540 - The Apache web server must augment re-creation to a stable and known baseline.	Unix	DISA STIG Apache Server 2.4 Unix Site v2r2
AS24-W1-000550 - The Apache web server must be built to fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Windows	DISA STIG Apache Server 2.4 Windows Server v2r2
AS24-W2-000540 - The Apache web server must augment re-creation to a stable and known baseline.	Windows	DISA STIG Apache Server 2.4 Windows Site v2r1
AS24-W2-000560 - The Apache web server must be configured to provide clustering - mod_proxy	Windows	DISA STIG Apache Server 2.4 Windows Site v2r1
AS24-W2-000560 - The Apache web server must be configured to provide clustering - ProxyPass	Windows	DISA STIG Apache Server 2.4 Windows Site v2r1
Big Sur - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Catalina v1.5.0 - All Profiles
FNFG-FW-000090 - The FortiGate firewall must fail to a secure state if the firewall filtering functions fail unexpectedly. - av-failopen	FortiGate	DISA Fortigate Firewall STIG v1r1
FNFG-FW-000090 - The FortiGate firewall must fail to a secure state if the firewall filtering functions fail unexpectedly. - av-failopen-session	FortiGate	DISA Fortigate Firewall STIG v1r1
FNFG-FW-000090 - The FortiGate firewall must fail to a secure state if the firewall filtering functions fail unexpectedly. - fail-open	FortiGate	DISA Fortigate Firewall STIG v1r1
IIST-SV-000136 - The IIS 10.0 web server must augment re-creation to a stable and known baseline.	Windows	DISA IIS 10.0 Server v2r5
IISW-SV-000136 - The IIS 8.5 web server must augment re-creation to a stable and known baseline.	Windows	DISA IIS 8.5 Server v2r3
MD3X-00-000420 - MongoDB must fail to a secure state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG MongoDB Enterprise Advanced 3.x v2r1 OS
MD4X-00-000800 - MongoDB must fail to a secure state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG MongoDB Enterprise Advanced 4.x v1r1 OS
Monterey - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Monterey v1.0.0 - 800-53r5 High
Monterey - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Monterey v1.0.0 - 800-53r4 High
Monterey - Configure System to Fail to a Known Safe State if System Initialization, Shutdown, or Abort Fails	Unix	NIST macOS Monterey v1.0.0 - All Profiles
SYMP-AG-000510 - Symantec ProxySG must fail to a secure state upon failure of initialization, shutdown, or abort actions.	BlueCoat	DISA Symantec ProxySG Benchmark ALG v1r3
TCAT-AS-000860 - Clusters must operate on a trusted network.	Unix	DISA STIG Apache Tomcat Application Server 9 v2r4
TCAT-AS-000860 - Clusters must operate on a trusted network.	Unix	DISA STIG Apache Tomcat Application Server 9 v2r4 Middleware
UBTU-18-010505 - Kernel core dumps must be disabled unless needed.	Unix	DISA STIG Ubuntu 18.04 LTS v2r8
UBTU-20-010413 - The Ubuntu operating system must disable kernel core dumps so that it can fail to a secure state if system initialization fails, shutdown fails or aborts fail.	Unix	DISA STIG Ubuntu 20.04 LTS v1r5
VCEM-67-000018 - ESX Agent Manager must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG VMware vSphere 6.7 EAM Tomcat v1r2
VCPF-67-000017 - Performance Charts must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r2
VCST-67-000018 - The Security Token Service must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG VMware vSphere 6.7 STS Tomcat v1r2
VCUI-67-000017 - vSphere UI must fail to a known safe state if system initialization fails, shutdown fails, or aborts fail.	Unix	DISA STIG VMware vSphere 6.7 UI Tomcat v1r2
WBLC-08-000229 - Oracle WebLogic must be configured to perform complete application deployments.	Unix	Oracle WebLogic Server 12c Linux v2r1 Middleware
WBLC-08-000229 - Oracle WebLogic must be configured to perform complete application deployments.	Unix	Oracle WebLogic Server 12c Linux v2r1
WBLC-08-000229 - Oracle WebLogic must be configured to perform complete application deployments.	Windows	Oracle WebLogic Server 12c Windows v2r1
WBSP-AS-001470 - The WebSphere Application Server must be configured to perform complete application deployments when using A/B clusters.	Unix	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware
WBSP-AS-001470 - The WebSphere Application Server must be configured to perform complete application deployments when using A/B clusters.	Unix	DISA IBM WebSphere Traditional 9 STIG v1r1
WBSP-AS-001470 - The WebSphere Application Server must be configured to perform complete application deployments when using A/B clusters.	Windows	DISA IBM WebSphere Traditional 9 Windows STIG v1r1
WBSP-AS-001480 - The WebSphere Application servers with an RMF categorization of high must be in a high-availability (HA) cluster.	Unix	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware
WBSP-AS-001480 - The WebSphere Application servers with an RMF categorization of high must be in a high-availability (HA) cluster.	Windows	DISA IBM WebSphere Traditional 9 Windows STIG v1r1
WBSP-AS-001480 - The WebSphere Application servers with an RMF categorization of high must be in a high-availability (HA) cluster.	Unix	DISA IBM WebSphere Traditional 9 STIG v1r1
WNFWA-000024 - The Windows Firewall with Advanced Security local firewall rules must not be merged with Group Policy settings when connected to a public network.	Windows	DISA Microsoft Windows Firewall v2r1
WNFWA-000025 - The Windows Firewall with Advanced Security local connection rules must not be merged with Group Policy settings when connected to a public network.	Windows	DISA Microsoft Windows Firewall v2r1