DISA STIG

Tenable has implemented configuration audit policies for many different Defense Information Systems Agency Security Technical Implementation Guide (DISA STIG) guidelines. These policies can be used with Tenable Nessus ProfessionalFeed subscriptions as well as in permanent enterprise deployments of Tenable SecurityCenter.

DISA STIG audit files are available for several different technologies including:

• Oracle 9 and 10
• Red Hat 5
• Solaris 10
• Windows Vista
• Windows XP Professional
• Windows 2000 Server
• Windows 2003 Server
• Windows 2008 Server
• Windows 7
• Windows IIS
• Windows MS-SQL Server

Operating system audits test recommended configuration settings such as registry values, permissions of users, group policy, active processes and more. SQL server audits test both the underlying Windows operating system as well as the specific configuration of the various SQL tables and internal settings.