| 2.11.8.7.2.1.5 Ensure 'Word 2007 and later binary documents and templates' is set to 'Enabled: Open/Save blocked, use open policy' | CIS Microsoft Office Enterprise v1.2.0 L1 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| 4.2.6 Ensure 'transport-guarantee' is set to 'CONFIDENTIAL' for all web applications | CIS IBM WebSphere Liberty v1.0.0 L1 | Unix | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
| 10.4 Force SSL when accessing the manager application | CIS Apache Tomcat 7 L1 v1.1.0 | Unix | SYSTEM AND COMMUNICATIONS PROTECTION |
| Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated) | MSCT Edge v86 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated) | MSCT Edge v87 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow certificates signed using SHA-1 when issued by local trust anchors (deprecated) | MSCT Edge v85 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v114 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v117 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v98 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v129 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v127 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v128 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v131 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT Edge v107 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Allow unconfigured sites to be reloaded in Internet Explorer mode | MSCT edge v96 v1.0.0 | Windows | CONFIGURATION MANAGEMENT |
| Apple OSX 10.11 El Capitan Level 2, version 1.1.0 | CIS Apple OSX 10.11 El Capitan L2 v1.1.0 | Unix | |
| CIS_Microsoft_Windows_10_Enterprise_v4.0.0_L2.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0 | CIS Microsoft Windows 10 Enterprise v4.0.0 L2 | Windows | |
| CIS_MySQL_5.6_Enterprise_Benchmark_v2.0.0_OS_MS_L1.audit from CIS Oracle MySQL 5.6 Enterprise Edition Benchmark | CIS MySQL 5.6 Enterprise Windows OS L1 v2.0.0 | Windows | |
| CIS_MySQL_5.6_Enterprise_Benchmark_v2.0.0_OS_MS_L1.audit from CIS Oracle MySQL 5.6 Enterprise Edition Benchmark | CIS MySQL 5.6 Enterprise Windows OS L2 v2.0.0 | Windows | |
| CIS_MySQL_5.6_Enterprise_Benchmark_v2.0.0_OS_UNIX_L2.audit from CIS Oracle MySQL 5.6 Enterprise Edition Benchmark | CIS MySQL 5.6 Enterprise Linux OS L2 v2.0.0 | Unix | |
| CIS_Red_Hat_Enterprise_Linux_7_v4.0.0_L2_Workstation.audit from CIS Red Hat Enterprise Linux 7 Benchmark v4.0.0 | CIS Red Hat Enterprise Linux 7 v4.0.0 L2 Workstation | Unix | |
| EDGE-00-000057 - User feedback must be disabled. | DISA STIG Edge v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX19-ED-000006 - SchUseStrongCrypto must be enabled. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | ACCESS CONTROL |
| EX19-ED-000019 - Exchange external Receive connectors must be domain secure-enabled. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | ACCESS CONTROL |
| EX19-ED-000040 - Exchange queue monitoring must be configured with threshold and action. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | AUDIT AND ACCOUNTABILITY |
| EX19-ED-000046 - Exchange audit data must be protected against unauthorized access for deletion. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | AUDIT AND ACCOUNTABILITY |
| EX19-ED-000055 - Exchange must not send customer experience reports to Microsoft. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX19-ED-000056 - Exchange Send Fatal Errors to Microsoft must be disabled. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX19-ED-000095 - Exchange internet-facing send connectors must specify a Smart Host. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| EX19-ED-000110 - Exchange Outbound Connection Timeout must be 10 minutes or less. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| EX19-ED-000112 - Exchange receive connector maximum hop count must be 60. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| EX19-ED-000113 - Exchange receive connectors must control the number of recipients per message. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| EX19-ED-000117 - Exchange receive connectors must be clearly named. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| EX19-ED-000118 - Exchange receive connectors must control the number of recipients chunked on a single message. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| EX19-ED-000123 - Exchange messages with a blank sender field must be rejected. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000124 - Exchange messages with a blank sender field must be filtered. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000125 - Exchange filtered messages must be archived. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000127 - Exchange nonexistent recipients must not be blocked. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000132 - The Exchange Block List service provider must be identified. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000133 - Exchange messages with a malformed From address must be rejected. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000136 - Exchange internal Receive connectors must not allow anonymous connections. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000137 - Exchange Simple Mail Transfer Protocol (SMTP) IP Allow List entries must be empty. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000141 - Exchange must have anti-spam filtering enabled. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000143 - Exchange Sender Identification Framework must be enabled. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND INFORMATION INTEGRITY |
| EX19-ED-000159 - Exchange must limit the Receive connector timeout. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | ACCESS CONTROL |
| EX19-ED-000195 - The Exchange application directory must be protected from unauthorized access. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | CONFIGURATION MANAGEMENT |
| EX19-ED-000231 - The Exchange SMTP automated banner response must not reveal server details. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts. | DISA STIG Oracle 11.2g v2r5 Linux | Unix | IDENTIFICATION AND AUTHENTICATION |
| Spanning Tree: enable edge-port | TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit | Alcatel | SYSTEM AND COMMUNICATIONS PROTECTION |
| WN12-AD-000004-DC - The Active Directory Domain Controllers Organizational Unit (OU) object must have the proper access control permissions. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
