×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

Unsupported content

 

This version of the product is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.
BMC Discovery 11.3 Security

DISA Secure Technical Implementation Guidelines

Any system implemented by the US Department of Defense (DoD) must meet the DISA Secure Technical Implementation Guidelines (STIG). The STIGs are publicly available and may also be implemented by organizations with particular security requirements. Information on Red Hat products' compliance with US government certifications can be found on the Red Hat website.

Red Hat Enterprise Linux (RHEL) 6 and 7, and the included Apache (Apache HTTP Server) 2.2 installation can be configured to meet their respective STIG. For more information, see the following pages from the Information Assurance Support Environment (IASE) website:

RHEL 7

The 11.3 patch 6 release of BMC Discovery is available on Red Hat Enterprise Linux 7 (RHEL 7). It is a separately licensed release. BMC performs testing for releases running on RHEL 7 against the Red Hat 7 STIGs.

CentOS

New installations of BMC Discovery 11.3 run on CentOS 7. The upgrade to BMC Discovery 11.3 from 11.1 and earlier versions replaces RHEL 6 with CentOS 6. As CentOS is derived from and aims to be functionally compatible with its upstream source, RHEL, BMC performs the same testing against the Red Hat 6 or 7 STIGs as appropriate.

Version compliance

BMC Discovery is compliant with the following STIG rule versions: 

Component

STIG rule version

Red Hat Enterprise Linux 6

v1r18

Red Hat Enterprise Linux 7v2r4

Apache (Apache HTTP Server)

v1r2

Note

If an issue arises on an appliance that has been customized to meet the STIG, you might need to reproduce the issue on an unmodified appliance to seek BMC Customer Support assistance.

Changes to meet the RHEL 6 and 7, and Apache 2.2 (Apache HTTP Server) STIG in BMC Discovery

The following sections list the changes that have been made in BMC Discovery to comply with STIG rules. Sections are provided listing STIG rules that you must apply at your discretion. Sections are also provided listing those rules that are not applicable to BMC Discovery, and the reason for non-applicability.

Was this page helpful? Yes No Submitting... Thank you
Last modified by Vinay Bellare on Feb 22, 2022
contributor-updated rhel7

Comments

Log in or register to comment.

Firewall port summary
STIG rules for RHEL6 addressed with restrictions
© Copyright 2004 - 2022 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.