U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

Tanium 7.x on TanOS STIG Ver 1, Rel 1 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
Tanium 7.x cpe:/a:tanium:tanium:7.0 (View CVEs)

Checklist Highlights

Checklist Name:
Tanium 7.x on TanOS STIG
Checklist ID:
1047
Version:
Ver 1, Rel 1
Type:
Compliance
Review Status:
Final
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
11/18/2022

Checklist Summary:

The Tanium 7.x on TanOS Security Technical Implementation Guide (STIG) is intended to provide security guidelines for the protection of the Tanium application and its components, including, but not limited to, the Tanium application, Tanium Console, Tanium Module Server, Tanium Clients, Tanium SQL Database, and TanOS. Tanium 7.x is a scalable endpoint security and management system. Its foundation is the Tanium Core, which includes basic asset inventory, control, and utilization monitoring capabilities, as well as connectors for integrating with third-party systems. Tanium uses a linear peer-to-peer architecture specifically designed for fault tolerance, transient endpoints, and global wide area network (WAN) segments. It is not a typical peer-to-peer application; only other Tanium endpoints can communicate over the peer-to-peer architecture. The clients communicate with each other over a specific Transmission Control Protocol (TCP) port.

Checklist Role:

  • Server

Known Issues:

Not provided.

Target Audience:

Parties within the DOD and federal government’s computing environments can obtain the applicable STIG from the DOD Cyber Exchange website at https://cyber.mil/. This site contains the latest copies of STIGs, SRGs, and other related security information. Those without a Common Access Card (CAC) that has DOD Certificates can obtain the STIG from https://public.cyber.mil/.

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not provided.

Regulatory Compliance:

This document is provided under the authority of DoDI 8500.01.

Comments/Warnings/Miscellaneous:

Not provided.

Disclaimer:

DISA accepts no liability for the consequences of applying specific configuration settings made on the basis of the SRGs/STIGs. It must be noted that the configuration settings specified should be evaluated in a local, representative test environment before implementation in a production environment, especially within large user populations. The extensive variety of environments makes it impossible to test these configuration settings for all potential software configurations.

Product Support:

Not provided.

Point of Contact:

disa.stig_spt@mail.mil

Sponsor:

Not provided.

Licensing:

Not provided.

Change History: 

updated to FINAL - 1/5/23

Dependency/Requirements:

URL Description

References:

Reference URL Description

NIST checklist record last modified on 01/05/2023