The DoD Root Certificate must be installed.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-32272 | WINPK-000001 | SV-42592r3_rule | IATS-1 IATS-2 | Medium |
| Description |
|---|
| To ensure secure DoD websites and DoD signed code are properly validated, the system must trust the DoD Root CA 2. The DOD root certificate will ensure that the trust chain is established for server certificates issued from the DOD CA. |
| STIG | Date |
|---|---|
| Windows 2003 Domain Controller Security Technical Implementation Guide | 2015-06-23 |
Details
| Check Text ( None ) |
|---|
| None |
| Fix Text (F-48783r1_fix) |
|---|
| Install the DoD Root CA 2 certificate. The InstallRoot tool is available on IASE at http://iase.disa.mil/pki-pke/function_pages/tools.html. |