| ALMA-09-039290 |
V1R1 |
AlmaLinux OS 9 must use mechanisms meeting the requirements of applicable federal laws, executive orders, directives, policies, regulations, standards, and guidance for authentication to a cryptographic module. |
|
| ALMA-09-039400 |
V1R1 |
AlmaLinux OS 9 must prevent system daemons from using Kerberos for authentication. |
|
| ALMA-09-039510 |
V1R1 |
The libreswan package must be installed. |
|
| ALMA-09-039620 |
V1R1 |
AlmaLinux OS 9 must have the packages required for encrypting offloaded audit logs installed. |
|
| OL08-00-010159 |
V2R2 |
The OL 8 "pam_unix.so" module must be configured in the system-auth file to use a FIPS 140-2 approved cryptographic hashing algorithm for system authentication. |
|
| OL08-00-010160 |
V2R2 |
The OL 8 "pam_unix.so" module must be configured in the password-auth file to use a FIPS 140-2 approved cryptographic hashing algorithm for system authentication. |
|
| OL08-00-010161 |
V2R2 |
OL 8 must prevent system daemons from using Kerberos for authentication. |
|
| OL08-00-010162 |
V2R2 |
The krb5-workstation package must not be installed on OL 8. |
|
| OL08-00-010163 |
V2R2 |
The krb5-server package must not be installed on OL 8. |
|
| RHEL-08-010160 |
V2R1 |
The RHEL 8 pam_unix.so module must be configured in the password-auth file to use a FIPS 140-2 approved cryptographic hashing algorithm for system authentication. |
|
| RHEL-08-010161 |
V2R1 |
RHEL 8 must prevent system daemons from using Kerberos for authentication. |
|
| RHEL-08-010162 |
V2R1 |
The krb5-workstation package must not be installed on RHEL 8. |
|
| RHEL-08-010163 |
V2R1 |
The krb5-server package must not be installed on RHEL 8. |
|
| RHEL-08-010159 |
V2R1 |
The RHEL 8 pam_unix.so module must be configured in the system-auth file to use a FIPS 140-2 approved cryptographic hashing algorithm for system authentication. |
|
| RHEL-09-611205 |
V2R2 |
RHEL 9 must prevent system daemons from using Kerberos for authentication. |
|
| RHEL-09-672025 |
V2R2 |
RHEL 9 must use mechanisms meeting the requirements of applicable federal laws, executive orders, directives, policies, regulations, standards, and guidance for authentication to a cryptographic module. |
|
| SLES-12-010210 |
V3R1 |
The SUSE operating system must employ FIPS 140-2 approved cryptographic hashing algorithm for system authentication (login.defs). |
|
| SLES-15-010260 |
V2R2 |
The SUSE operating system must employ FIPS 140-2 approved cryptographic hashing algorithm for system authentication (login.defs). |
|
| UBTU-18-010110 |
V2R15 |
The Ubuntu operating system must employ a FIPS 140-2 approved cryptographic hashing algorithms for all created and stored passwords. |
|
| UBTU-20-010404 |
V2R1 |
The Ubuntu operating system must encrypt all stored passwords with a FIPS 140-2 approved cryptographic hashing algorithm. |
|
| UBTU-22-611070 |
V2R2 |
Ubuntu 22.04 LTS must encrypt all stored passwords with a FIPS 140-3-approved cryptographic hashing algorithm. |
|
| WN10-CC-000052 |
V3R2 |
Windows 10 must be configured to prioritize ECC Curves with longer key lengths first. |
|
| WN10-SO-000190 |
V3R2 |
Kerberos encryption types must be configured to prevent the use of DES and RC4 encryption suites. |
|
| WN11-CC-000052 |
V2R2 |
Windows 11 must be configured to prioritize ECC Curves with longer key lengths first. |
|
| WN11-SO-000190 |
V2R2 |
Kerberos encryption types must be configured to prevent the use of DES and RC4 encryption suites. |
|
| WN16-SO-000350 |
V2R9 |
Kerberos encryption types must be configured to prevent the use of DES and RC4 encryption suites. |
|
| WN19-SO-000290 |
V3R2 |
Windows Server 2019 Kerberos encryption types must be configured to prevent the use of DES and RC4 encryption suites. |
|
| WN22-SO-000290 |
V2R2 |
Windows Server 2022 Kerberos encryption types must be configured to prevent the use of DES and RC4 encryption suites. |
|