From Tanium 6.5 Security Technical Implementation Guide
Part of SRG-APP-000015
Associated with: CCI-001453
Without cryptographic integrity protections, information can be altered by unauthorized users without detection.
The Tanium endpoint makes a connection to the Tanium Server, the endpoint's copy of the Tanium Server's public key is used to verify the validity of the registration day coming from the Tanium Server. If any endpoint systems do not have the correct Tanium Server public key in its configuration, they will not perform any instructions from the Tanium Server and a record of those endpoints will be listed in the Tanium Server's System Status. To validate, Review in console--Administration, System Status, to determine if any endpoints connected with an invalid key. If any systems are listed with "No" under the column for "Valid Key", this is a finding.
For systems which do not have a valid key for the Tanium Server, re-deploy the client software from Tanium.
Lavender hyperlinks in small type off to the right (of CSS
class id
, if you view the page source) point to
globally unique URIs for each document and item. Copy the
link location and paste anywhere you need to talk
unambiguously about these things.
You can obtain data about documents and items in other
formats. Simply provide an HTTP header Accept:
text/turtle
or
Accept: application/rdf+xml
.
Powered by sagemincer