STIGhubSTIGhub
STIGsRMF ControlsCompare
STIGhub— A free STIG search and compliance tool·STIGs updated 3 days ago
Powered by Pylon·Privacy·Terms·© 2026 Beacon Cloud Solutions, Inc.
← IA-8 (2) — Acceptance of External Authenticators

CCI-002011

Definition

The information system accepts FICAM-approved third-party credentials.

Parent Control

IA-8 (2)Acceptance of External AuthenticatorsIdentification and Authentication

Linked STIG Checks (9)

V-279055CAT IColdFusion must be using an enterprise solution for authentication.Adobe ColdFusion Security Technical Implementation GuideV-222559CAT IIThe application must accept Federal Identity, Credential, and Access Management (FICAM)-approved third-party credentials.Application Security and Development Security Technical Implementation GuideV-272627CAT IIICylanceON-PREM must be configured to use a third-party identity provider.Arctic Wolf CylanceON-PREM Security Technical Implementation GuideV-256846CAT IICompliance Guardian must accept FICAM-approved third-party credentials.AvePoint Compliance Guardian Security Technical Implementation GuideV-235780CAT IILDAP integration in Docker Enterprise must be configured.Docker Enterprise 2.x Linux/UNIX Security Technical Implementation GuideV-235821CAT IISAML integration must be enabled in Docker Enterprise.Docker Enterprise 2.x Linux/UNIX Security Technical Implementation GuideV-255794CAT IIIThe MQ Appliance messaging server must accept FICAM-approved third-party credentials.IBM MQ Appliance V9.0 AS Security Technical Implementation GuideV-255865CAT IIThe WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.IBM WebSphere Traditional V9.x Security Technical Implementation GuideV-254093CAT IInnoslate must use multifactor authentication for network access to privileged and non-privileged accounts.SPEC Innovations Innoslate 4.x Security Technical Implementation Guide