| 1.4.2.1 Ensure 'TACACS+/RADIUS' is configured correctly - host | IDENTIFICATION AND AUTHENTICATION |
| 1.4.2.1 Ensure 'TACACS+/RADIUS' is configured correctly - protocol | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION |
| 1.6.3 Ensure 'RSA key pair' is greater than or equal to 2048 bits | CONFIGURATION MANAGEMENT |
| 1.6.4 Ensure 'SCP protocol' is set to Enable for files transfers | CONFIGURATION MANAGEMENT |
| 1.7.1 Ensure 'HTTP source restriction' is set to an authorized IP address | CONFIGURATION MANAGEMENT |
| 2.1.1 Ensure 'RIP authentication' is enabled | CONFIGURATION MANAGEMENT |
| 2.1.2 Ensure 'OSPF authentication' is enabled | CONFIGURATION MANAGEMENT |
| 2.1.3 Ensure 'EIGRP authentication' is enabled | CONFIGURATION MANAGEMENT |
| 2.1.4 Ensure 'BGP authentication' is enabled | CONFIGURATION MANAGEMENT |
| 2.2 Ensure 'noproxyarp' is enabled for untrusted interfaces | CONFIGURATION MANAGEMENT |
| 2.3 Ensure 'DNS Guard' is enabled | CONFIGURATION MANAGEMENT |
| 3.9 Ensure Botnet protection is enabled for untrusted interfaces | CONFIGURATION MANAGEMENT |
| 3.10 Ensure ActiveX filtering is enabled | CONFIGURATION MANAGEMENT |
| 3.11 Ensure Java applet filtering is enabled | CONFIGURATION MANAGEMENT |
| CIS_Cisco_ASA_9.x_Firewall_v1.0.0_L2.audit from CIS Cisco ASA 9.x Firewall Benchmark v1.0.0 | |
