STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← IA-8 (2) — Identification and Authentication (Non-Organizational Users)

CCI-002011

Definition

The information system accepts FICAM-approved third-party credentials.

Parent Control

IA-8 (2)Identification and Authentication (Non-Organizational Users)Identification and Authentication

Linked STIG Checks (9)

V-279055CAT IColdFusion must be using an enterprise solution for authentication.Adobe ColdFusion Security Technical Implementation GuideV-222559CAT IIThe application must accept Federal Identity, Credential, and Access Management (FICAM)-approved third-party credentials.Application Security and Development Security Technical Implementation GuideV-272627CAT IIICylanceON-PREM must be configured to use a third-party identity provider.Arctic Wolf CylanceON-PREM Security Technical Implementation GuideV-256846CAT IICompliance Guardian must accept FICAM-approved third-party credentials.AvePoint Compliance Guardian Security Technical Implementation GuideV-235780CAT IILDAP integration in Docker Enterprise must be configured.Docker Enterprise 2.x Linux/UNIX Security Technical Implementation GuideV-235821CAT IISAML integration must be enabled in Docker Enterprise.Docker Enterprise 2.x Linux/UNIX Security Technical Implementation GuideV-255794CAT IIIThe MQ Appliance messaging server must accept FICAM-approved third-party credentials.IBM MQ Appliance V9.0 AS Security Technical Implementation GuideV-255865CAT IIThe WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.IBM WebSphere Traditional V9.x Security Technical Implementation GuideV-254093CAT IInnoslate must use multifactor authentication for network access to privileged and non-privileged accounts.SPEC Innovations Innoslate 4.x Security Technical Implementation Guide