SRG-OS-000067-GPOS-00035 Controls

STIG IDVersionTitleProduct
ALMA-09-038850V1R4For PKI-based authentication, AlmaLinux OS 9 must enforce authorized access to the corresponding private key.AlmaLinux OS 9
APPL-13-001060V1R5The macOS system must accept and verify Personal Identity Verification (PIV) credentials, implement a local cache of revocation data to support path discovery and validation in case of the inability to access revocation information via the network, and only allow the use of DOD PKI-established certificate authorities for verification of the establishment of protected sessions.macOS 13 - Ventura
APPL-14-001150V2R4The macOS system must disable password authentication for SSH.macOS 14 - Sonoma
APPL-14-003020V2R4The macOS system must enforce smart card authentication.macOS 14 - Sonoma
APPL-15-001150V1R5The macOS system must disable password authentication for SSH.macOS 15 - Sequoia
APPL-15-003020V1R5The macOS system must enforce smart card authentication.macOS 15 - Sequoia
OL08-00-010100V2R6OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.Oracle Linux 8
OL09-00-000905V1R3OL 9, for PKI-based authentication, must enforce authorized access to the corresponding private key.Oracle Linux 9
RHEL-08-010100V2R5RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.Red Hat Enterprise Linux 8
RHEL-09-611190V2R6RHEL 9, for PKI-based authentication, must enforce authorized access to the corresponding private key.Red Hat Enterprise Linux 9
TOSS-04-010020V2R3TOSS, for PKI-based authentication, must enforce authorized access to the corresponding private key.Tri-Lab Operating System Stack
WN16-SO-000420V2R9Users must be required to enter a password to access private keys stored on the computer.Microsoft Windows Server 2016
WN19-SO-000350V3R6Windows Server 2019 users must be required to enter a password to access private keys stored on the computer.Microsoft Windows Server 2019
WN22-SO-000350V2R6Windows Server 2022 users must be required to enter a password to access private keys stored on the computer.Microsoft Windows Server 2022
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.