STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 4 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← Back to Nutanix AOS 5.20.x OS Security Technical Implementation Guide

V-254194

CAT II (Medium)

Nutanix AOS must be configured to run SCMA daily.

Rule ID

SV-254194r991589_rule

STIG

Nutanix AOS 5.20.x OS Security Technical Implementation Guide

Version

V1R2

CCIs

CCI-000366

Discussion

The Nutanix platform leverages the use of the Security Configuration Management Automation (SCMA) framework to ensure secure configurations have not been altered from their desired state. If the SCMA framework is not run on a daily basis, changes to the secure baseline could be made, compromising multiple security functions and features on the operating system.

Check Content

Verify that the SCMA framework is set to run daily:

$ ncli cluster get-cvm-security-config | egrep 'Schedule'
Schedule : DAILY

If "Schedule" is not set to "DAILY", this is a finding.

Fix Text

Set the SCMA framework to check the baseline daily:
$ sudo ncli cluster edit-cvm-security-params schedule=daily