BlueCat appliances and virtual machines include improved security configurations and operations based on the Security Technical Implementation Guides (STIG) as specified by the Information Assurance Support Environment (IASE) section of the Defense Information Systems Agency (DISA). Depending on the security policies in place at your organization, STIG-compliance might be a requirement for your BlueCat appliances and VMs.
For more information on DISA STIG requirements and compliance, visit https://public.cyber.mil/stigs/