U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

National Checklist Program

National Checklist Program

NCP

  1. Checklist Repository

Tanium 6.5 STIG Version 1, Release 3 Checklist Details (Checklist Revisions)

Supporting Resources:

Target:

Target CPE Name
TANIUM 6.5 cpe:/a:tanium:tanium:6.5 (View CVEs)

Checklist Highlights

Checklist Name:
Tanium 6.5 STIG
Checklist ID:
654
Version:
Version 1, Release 3
Type:
Compliance
Review Status:
Archived
Authority:
Governmental Authority: Defense Information Systems Agency
Original Publication Date:
10/28/2016

Checklist Summary:

Tanium 6.5 is a scalable Endpoint Security and Management system. Its foundation is the Tanium Core. Tanium Core includes basic asset inventory, control and utilization monitoring capabilities, and connectors for integrating with third-party systems. Tanium uses a linear peer-to-peer architecture specifically designed for fault tolerance, transient endpoints, and the global Wide Area Network (WAN) segments. It is not a typical peer-to-peer application; only other Tanium endpoints can communicate over the peer-to-peer architecture. The clients communicate with each other over a specific Transmission Control Protocol (TCP) port.

Checklist Role:

  • Application Server

Known Issues:

Not Provided

Target Audience:

Not Provided

Target Operational Environment:

  • Managed
  • Specialized Security-Limited Functionality (SSLF)

Testing Information:

Not Provided

Regulatory Compliance:

DoD Instruction (DoDI) 8500.01 All technical NIST SP 800-53 requirements were considered while developing this STIG. Requirements that are applicable and configurable will be included in the final STIG. A report marked For Official Use Only (FOUO) will be available for those items that did not meet requirements. This report will be available to component DAA personnel for risk assessment purposes by request via email to: disa.stig_spt@mail.mil

Comments/Warnings/Miscellaneous:

Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. DISA Field Security Operations (FSO) will coordinate all change requests with the relevant DoD organizations before inclusion in this document.

Disclaimer:

Not Provided

Product Support:

Not Provided

Point of Contact:

Comments or proposed revisions to this document should be sent via email to the following address: disa.stig_spt@mail.mil. DISA Field Security Operations (FSO) will coordinate all change requests with the relevant DoD organizations before inclusion in this document.

Sponsor:

Not Provided

Licensing:

Not Provided

Change History: 

moved to FINAL - 6/7/2016
Updated STIG to V1, R2 - 10-28-2016
updated to FINAL - 12/07/2016
null
Updated URL to reflect change to the DISA website - http --> https
Updated URLs - 6/14/19
Sunset per DISA - 4/24/2020

Dependency/Requirements:

URL Description

References:

Reference URL Description

NIST checklist record last modified on 04/24/2020