| ALMA-09-002990 | V1R4 | AlmaLinux OS 9 SSH client must be configured to use only encryption ciphers employing FIPS 140-3-validated cryptographic hash algorithms to protect the confidentiality of SSH client connections. | AlmaLinux OS 9 |
| ALMA-09-003100 | V1R4 | AlmaLinux OS 9 must implement DOD-approved encryption ciphers to protect the confidentiality of SSH connections. | AlmaLinux OS 9 |
| ALMA-09-003210 | V1R4 | AlmaLinux OS 9 SSH client must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3-validated cryptographic hash algorithms. | AlmaLinux OS 9 |
| ALMA-09-003320 | V1R4 | The AlmaLinux 9 SSH server must be configured to use only DOD-approved encryption ciphers employing FIPS 140-3-validated cryptographic hash algorithms to protect the confidentiality of SSH server connections. | AlmaLinux OS 9 |
| ALMA-09-003430 | V1R4 | AlmaLinux OS 9 must implement DOD-approved systemwide cryptographic policies to protect the confidentiality of SSH server connections. | AlmaLinux OS 9 |
| ALMA-09-003540 | V1R4 | The AlmaLinux OS 9 SSH server must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3-validated cryptographic hash algorithms to protect the confidentiality of SSH server connections. | AlmaLinux OS 9 |
| ALMA-09-003760 | V1R4 | AlmaLinux OS 9 must implement DOD-approved TLS encryption in the GnuTLS package. | AlmaLinux OS 9 |
| ALMA-09-003980 | V1R4 | AlmaLinux OS 9 must implement DOD-approved encryption in the OpenSSL package. | AlmaLinux OS 9 |
| ALMA-09-004090 | V1R4 | AlmaLinux OS 9 must implement DOD-approved TLS encryption in the OpenSSL package. | AlmaLinux OS 9 |
| OL07-00-040180 | V3R3 | The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) authentication communications. | Oracle Linux 7 |
| OL07-00-040190 | V3R3 | The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications. | Oracle Linux 7 |
| OL07-00-040200 | V3R3 | The Oracle Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications. | Oracle Linux 7 |
| OL07-00-040400 | V3R3 | The Oracle Linux operating system must be configured so that the SSH daemon is configured to only use Message Authentication Codes (MACs) employing FIPS 140-2 approved cryptographic hash algorithms. | Oracle Linux 7 |
| OL08-00-010287 | V2R6 | The OL 8 SSH daemon must be configured to use system-wide crypto policies. | Oracle Linux 8 |
| OL08-00-010293 | V2R6 | The OL 8 operating system must implement DOD-approved encryption in the OpenSSL package. | Oracle Linux 8 |
| OL08-00-010294 | V2R6 | The OL 8 operating system must implement DoD-approved TLS encryption in the OpenSSL package. | Oracle Linux 8 |
| OL08-00-010295 | V2R6 | The OL 8 operating system must implement DoD-approved TLS encryption in the GnuTLS package. | Oracle Linux 8 |
| OL08-00-040342 | V2R6 | OL 8 SSH server must be configured to use only FIPS-validated key exchange algorithms. | Oracle Linux 8 |
| OL09-00-000252 | V1R3 | The OL 9 SSH daemon must be configured to use systemwide cryptographic policies. | Oracle Linux 9 |
| OL09-00-000254 | V1R3 | OL 9 SSH server must be configured to use only ciphers employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH server connections. | Oracle Linux 9 |
| OL09-00-000255 | V1R3 | OL 9 SSH server must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH server connections. | Oracle Linux 9 |
| OL09-00-000261 | V1R3 | OL 9 SSH client must be configured to use only DOD-approved encryption ciphers employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH client connections. | Oracle Linux 9 |
| OL09-00-000262 | V1R3 | OL 9 SSH client must be configured to use only DOD-approved Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH client connections. | Oracle Linux 9 |
| RHEL-07-040180 | V3R9 | The Red Hat Enterprise Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) authentication communications. | Red Hat Enterprise Linux 7 |
| RHEL-07-040190 | V3R9 | The Red Hat Enterprise Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications. | Red Hat Enterprise Linux 7 |
| RHEL-07-040200 | V3R9 | The Red Hat Enterprise Linux operating system must implement cryptography to protect the integrity of Lightweight Directory Access Protocol (LDAP) communications. | Red Hat Enterprise Linux 7 |
| RHEL-07-040400 | V3R9 | The Red Hat Enterprise Linux operating system must be configured so that the SSH daemon is configured to only use Message Authentication Codes (MACs) employing FIPS 140-2 approved cryptographic hash algorithms. | Red Hat Enterprise Linux 7 |
| RHEL-08-010290 | V2R5 | The RHEL 8 SSH server must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms. | Red Hat Enterprise Linux 8 |
| RHEL-08-010291 | V2R5 | The RHEL 8 operating system must implement DOD-approved encryption to protect the confidentiality of SSH server connections. | Red Hat Enterprise Linux 8 |
| RHEL-08-010293 | V2R5 | The RHEL 8 operating system must implement DoD-approved encryption in the OpenSSL package. | Red Hat Enterprise Linux 8 |
| RHEL-08-010294 | V2R5 | The RHEL 8 operating system must implement DoD-approved TLS encryption in the OpenSSL package. | Red Hat Enterprise Linux 8 |
| RHEL-08-010295 | V2R5 | The RHEL 8 operating system must implement DoD-approved TLS encryption in the GnuTLS package. | Red Hat Enterprise Linux 8 |
| RHEL-08-010287 | V2R5 | The RHEL 8 SSH daemon must be configured to use system-wide crypto policies. | Red Hat Enterprise Linux 8 |
| RHEL-08-040342 | V2R5 | RHEL 8 SSH server must be configured to use only FIPS-validated key exchange algorithms. | Red Hat Enterprise Linux 8 |
| RHEL-08-010296 | V2R5 | RHEL 8 SSH client must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms. | Red Hat Enterprise Linux 8 |
| RHEL-08-010297 | V2R5 | RHEL 8 SSH client must be configured to use only ciphers employing FIPS 140-3 validated cryptographic hash algorithms. | Red Hat Enterprise Linux 8 |
| RHEL-09-255065 | V2R6 | The RHEL 9 SSH server must be configured to use only DOD-approved encryption ciphers employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH server connections. | Red Hat Enterprise Linux 9 |
| RHEL-09-255075 | V2R6 | The RHEL 9 SSH server must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH server connections. | Red Hat Enterprise Linux 9 |
| RHEL-09-255064 | V2R6 | The RHEL 9 SSH client must be configured to use only DOD-approved encryption ciphers employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH client connections. | Red Hat Enterprise Linux 9 |
| RHEL-09-255070 | V2R6 | The RHEL 9 SSH client must be configured to use only DOD-approved Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms to protect the confidentiality of SSH client connections. | Red Hat Enterprise Linux 9 |
| SLES-12-030270 | V3R2 | The SUSE operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | SUSE Linux Enterprise 12 |
| SLES-15-040450 | V2R4 | The SUSE operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | SUSE Linux Enterprise 15 |
| TOSS-04-010140 | V2R3 | The TOSS operating system must implement DoD-approved encryption to protect the confidentiality of SSH connections. | Tri-Lab Operating System Stack |
| TOSS-04-010150 | V2R3 | The TOSS operating system must implement DoD-approved TLS encryption in the GnuTLS package. | Tri-Lab Operating System Stack |
| TOSS-04-010160 | V2R3 | The TOSS SSH daemon must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-2 validated cryptographic hash algorithms. | Tri-Lab Operating System Stack |
| UBTU-18-010417 | V2R15 | The Ubuntu operating system must configure the SSH daemon to only use Message Authentication Codes (MACs) employing FIPS 140-2 approved cryptographic hash algorithms to protect the integrity of nonlocal maintenance and diagnostic communications. | Ubuntu 18.04 |
| UBTU-18-010421 | V2R15 | The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | Ubuntu 18.04 |
| UBTU-20-010045 | V2R3 | The Ubuntu operating system SSH server must be configured to use only FIPS-validated key exchange algorithms. | Ubuntu 20.04 |
| UBTU-22-255055 | V2R6 | Ubuntu 22.04 LTS must configure the SSH daemon to use Message Authentication Codes (MACs) employing FIPS 140-3-approved cryptographic hashes to prevent the unauthorized disclosure of information and/or detect changes to information during transmission. | Ubuntu 22.04 |
| UBTU-24-100830 | V1R1 | Ubuntu 24.04 LTS must configure the SSH daemon to use Message Authentication Codes (MACs) employing FIPS 140-3 approved cryptographic hashes to prevent the unauthorized disclosure of information and/or detect changes to information during transmission. | Ubuntu 24.04 |
| UBTU-24-100850 | V1R1 | Ubuntu 24.04 LTS must configure the SSH client to use FIPS 140-3 approved ciphers to prevent the unauthorized disclosure of information and/or detect changes to information during transmission. | Ubuntu 24.04 |
| UBTU-24-100860 | V1R1 | Ubuntu 24.04 LTS SSH client must be configured to use only Message Authentication Codes (MACs) employing FIPS 140-3 validated cryptographic hash algorithms. | Ubuntu 24.04 |
| WN10-CC-000285 | V3R4 | The Remote Desktop Session Host must require secure RPC communications. | Microsoft Windows 10 |
| WN11-CC-000285 | V2R5 | The Remote Desktop Session Host must require secure RPC communications. | Microsoft Windows 11 |
| WN16-CC-000400 | V2R9 | The Remote Desktop Session Host must require secure Remote Procedure Call (RPC) communications. | Microsoft Windows Server 2016 |
| WN16-CC-000410 | V2R9 | Remote Desktop Services must be configured with the client connection encryption set to High Level. | Microsoft Windows Server 2016 |