SIPR How it works: Each hostname can have multiple STIGs (e.g., a server might have Windows Server STIG, IIS STIG, and SQL Server STIG). Each hostname + STIG combination needs to be mapped to the appropriate OCA assessment area. For example, "WEBSERVER01" + "IIS STIG" maps to "Web Server" area, while "WEBSERVER01" + "Windows Server STIG" maps to "Windows OS" area.
0 hostname+STIG combinations
·
All mapped ✓
0 mapped · 0 need attention
Add/Edit Mapping
Map a hostname + STIG combination to an OCA assessment area
OCA Assessment Areas Reference
Boundary Security
Firewalls, DMZ, perimeter security
Internal Network
Internal network switches, routers, VLANs
Combined Vulnerability Scan
ACAS/Nessus vulnerability scan results
Domain Name System
DNS servers and configuration
Host Based Security System
HBSS/Trellix endpoint security
Traditional Security
Physical security, access control
Wireless Communications/Mobility
WiFi, mobile devices
Cross Domain Solutions - Admin
CDS administrative controls
Cross Domain Solutions - Technical
CDS technical implementation
Exchange
Microsoft Exchange email servers
Web Server
IIS, Apache, web applications
Database
SQL Server, Oracle, database security
Video and Voice Over Internet Protocol (VVOIP)
VoIP phones, video conferencing
Windows OS
Windows workstations and servers
Unix OS
Linux, Unix, macOS systems
Releaseable Networks
Networks for coalition/external use
Virtual Environment
VMware, Hyper-V, containers
Other Review
Uncategorized or specialized systems