Enable DISA STIG compliance with Ubuntu Pro
Simplify and speed up STIG compliance to achieve ATO for your DOD workloads with Ubuntu Pro. Get access to the Ubuntu Security Guide (USG), an automation tool that hardens and audits systems at scale on-prem, on the cloud, and in air-gapped environments.
The benefits of STIG with Ubuntu Pro
Customized hardening
USG supports fully customizable tailoring files to tune your hardening profile to match the mission requirements. Available for hardening, remediation, and auditing.
On-demand auditing
Generates human and machine-readable audit reports with a single command with USG. Set scheduled or on-demand audits for stress-free ATO.
Integrated fleetwide management
Take STIG deployment and auditing beyond the single machine command line by using Landscape included with Ubuntu Pro. Landscape is a fleet management tool that allows you to enable, manage, and audit your fleet for STIG compliance.
Security compliance in action
Ubuntu Pro helps Lucid Software meet FedRAMP compliance for government contracts
By deploying Ubuntu Pro, Lucid acquired AWS-compatible and FIPS 140-2 certified packages and became FedRAMP compliant.
LaunchDarkly becomes the first FedRAMP-authorized feature management platform thanks to Ubuntu Pro
Learn how a SaaS provider achieved effortless FIPS compliance on AWS.
How New Mexico State University accelerates compliant federal research with Ubuntu
When the stakes are high and national security is on the line, every decision matters. Just ask the team at New Mexico State University’s Physical Science Laboratory (PSL).
What is DISA-STIG?
The Defense Information System Agency (DISA) is a US Department of Defense combat support agency. It provides and operates information infrastructure to support military operations and national-level leadership. The Security Technical Implementation Guide (STIG) is a configuration standard consisting of guidelines for hardening systems and applications to improve their security posture and reduce the attack surface. Administrators can apply the STIG guidelines and demonstrate to auditors that the system is mission ready.
What Canonical can provide
Patching security vulnerabilities
Canonical provides up to 15 years of security patching for software applications and infrastructure components within the Ubuntu ecosystem. Keeping your entire open source estate up-to-date. Ubuntu Pro also includes Livepatch, enabling kernel patching without downtime.
FIPS-certified crypto modules
Ubuntu Pro subscription also includes FIPS 140-3 compliant modules, a key requirement for STIG hardening. We simplify FIPS compliance, with one step deployment.
Fleet management
The landscape fleet management tool is also included in the Ubuntu Pro subscription. Landscape automates security patching, auditing, access management, and compliance tasks across your Ubuntu estate. It scales STIG and CIS deployment and auditing beyond the single machine.
Hardening automation everywhere
-
On-prem
Ubuntu Pro enables compliance on Ubuntu desktops and servers in private clouds and Virtual Machines.
-
In the cloud
Get pre-hardened and compliant Ubuntu Pro images in the public cloud
-
In air-gapped environments
All Ubuntu Pro features are also available in air-gapped or offline deployments.
Whitepapers
Webinars
Take the next steptowards STIG compliance
Learn about all our security certifications ›
Explore pricing and find the right subscription for your needs ›
Read the documentation about STIG for Ubuntu ›
Ubuntu Pro provides an easy pathway to STIG compliance. It delivers vulnerability patching for Ubuntu OS and Applications; automated, unattended, and restartless security updates; and the best tools needed to secure and manage your Ubuntu infrastructure, and simplify ATO.