Any system implemented by the US Department of Defense (DoD) must meet the DISA Security Technical Implementation Guidelines (STIG). Information on Red Hat products compliance with US government certifications can be found on the Red Hat website.
The Red Hat Enterprise Linux 5 and Red Hat Enterprise Linux 6 operating systems can be configured to meet the STIG. See the following page from the Information Assurance Support Environment (IASE):
If an issue arises on an appliance that has been customized to meet the STIG, BMC Customer Support may require the issue to be reproduced on an unmodified appliance.
The following sections detail the changes that have been made in BMC Atrium Discovery 9.0 SP2 and SP3 to comply with STIG rules. A section is provided on rules which are currently under consideration for possible inclusion in future releases. Additionally, a section is provided listing STIG rules that are not applicable to BMC Atrium Discovery, and the reason for non-applicability.