SRG-OS-000033-GPOS-00014 Controls

STIG ID Version Title Product
APPL-14-000054 V1R2 The macOS system must limit SSHD to FIPS-compliant connections.
APPL-14-000057 V1R2 The macOS system must limit SSH to FIPS-compliant connections.
SLES-12-030170 V2R11 The SUSE operating system must implement DoD-approved encryption to protect the confidentiality of SSH remote connections.
RHEL-08-010020 V1R3 RHEL 8 must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.
RHEL-08-040161 V1R3 RHEL 8 must force a frequent session key renegotiation for SSH connections to the server.
SLES-15-010160 V1R12 The SUSE operating system must implement DoD-approved encryption to protect the confidentiality of SSH remote connections.
WN11-CC-000290 V2R2 Remote Desktop Services must be configured with the client connection encryption set to the required level.
WN10-CC-000290 V3R2 Remote Desktop Services must be configured with the client connection encryption set to the required level.
WN19-CC-000370 V3R2 Windows Server 2019 Remote Desktop Services must require secure Remote Procedure Call (RPC) communications.
WN19-CC-000380 V3R2 Windows Server 2019 Remote Desktop Services must be configured with the client connection encryption set to High Level.
UBTU-22-255050 V2R2 Ubuntu 22.04 LTS must configure the SSH daemon to use FIPSĀ 140-3-approved ciphers to prevent the unauthorized disclosure of information and/or detect changes to information during transmission.
UBTU-22-255060 V2R2 Ubuntu 22.04 LTS SSH server must be configured to use only FIPS-validated key exchange algorithms.
WN16-SO-000430 V2R7 Windows Server 2016 must be configured to use FIPS-compliant algorithms for encryption, hashing, and signing.
WN22-CC-000370 V1R4 Windows Server 2022 Remote Desktop Services must require secure Remote Procedure Call (RPC) communications.
WN22-CC-000380 V1R4 Windows Server 2022 Remote Desktop Services must be configured with the client connection encryption set to High Level.
RHEL-07-021350 V3R6 The Red Hat Enterprise Linux operating system must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.
RHEL-07-040110 V3R6 The Red Hat Enterprise Linux 7 operating system must implement DoD-approved encryption to protect the confidentiality of SSH connections.
RHEL-09-671010 V1R3 RHEL 9 must enable FIPS mode.
RHEL-09-671020 V1R3 RHEL 9 IP tunnels must use FIPS 140-2/140-3 approved cryptographic algorithms.
OL08-00-010020 V1R3 OL 8 must implement NIST FIPS-validated cryptography for the following: To provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.
OL08-00-040161 V1R3 OL 8 must force a frequent session key renegotiation for SSH connections to the server.
UBTU-18-010411 V2R11 The Ubuntu operating system must implement DoD-approved encryption to protect the confidentiality of remote access sessions.
OL07-00-021350 V2R11 The Oracle Linux operating system must implement NIST FIPS-validated cryptography for the following: to provision digital signatures, to generate cryptographic hashes, and to protect data requiring data-at-rest protections in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, and standards.
OL07-00-040110 V2R11 The Oracle Linux 7 operating system must implement DoD-approved encryption to protect the confidentiality of SSH connections.
OL07-00-040712 V2R11 The Oracle Linux operating system SSH server must be configured to use only FIPS-validated key exchange algorithms.