Item Search

Name	Audit Name	Plugin	Category
2.2.9 (L1) Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.9 (L1) Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.11.4 Ensure 'Network security: Configure encryption types allowed for Kerberos' is set to 'AES128_HMAC_SHA1, AES256_HMAC_SHA1, Future encryption types'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.2.3 Disable database discover - 'discover_db = disable'	CIS IBM DB2 OS L2 v1.2.0	Unix	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.12 Set archive log failover retry limit - 'numarchretry <= 5'	CIS IBM DB2 OS L2 v1.2.0	Unix	CONFIGURATION MANAGEMENT
3.3.5 Secure the JDK runtime library - 'jdk_path value'	CIS IBM DB2 OS L2 v1.2.0	Unix	CONFIGURATION MANAGEMENT
3.3.7 Disable unused task scheduler - 'sched_enable = off'	CIS IBM DB2 OS L2 v1.2.0	Unix	CONFIGURATION MANAGEMENT
8.0.2 Start and Stop DB2 Administrator Server	CIS IBM DB2 OS L2 v1.2.0	Unix
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 Domain Controller	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.11.2.1 Ensure 'Allow enhanced PINs for startup' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.1 Ensure 'Allow enhanced PINs for startup' is set to 'Enabled'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.4 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Allow data recovery agent' is set to 'Enabled: False'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.2.6 Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Omit recovery options from the BitLocker setup wizard' is set to 'Enabled: True'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.14 Ensure 'Require additional authentication at startup: Configure TPM startup PIN:' is set to 'Enabled: Require startup PIN with TPM'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.14 Ensure 'Require additional authentication at startup: Configure TPM startup PIN:' is set to 'Enabled: Require startup PIN with TPM'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.6 Ensure 'Choose how BitLocker-protected removable drives can be recovered: Omit recovery options from the BitLocker setup wizard' is set to 'Enabled: True'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.9 (BL) Ensure 'Choose how BitLocker-protected removable drives can be recovered: Do not enable BitLocker until recovery information is stored to AD DS for removable data drives' is set to 'Enabled: False'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.3.13 Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.13 Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.13 Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.17 (BL) Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL, MEDIA PROTECTION
18.9.59.3.9.1 Ensure 'Always prompt for password upon connection' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION
18.10.9.2.10 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Do not enable BitLocker until recovery information is stored to AD DS for operating system drives' is set to 'Enabled: True'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.10.56.3.2.1 (L1) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.56.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.10.56.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.56.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 NG	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L2	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
18.10.57.3.2.1 (L2) Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2 BL	Windows	CONFIGURATION MANAGEMENT
19.1.3.3 (L1) Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.3 (L1) Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.3 (L1) Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.3 (L1) Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
CIS Control 10 (10.5) Ensure All Backups Have at Least One Offline Backup Destination	CAS Implementation Group 1 Audit File	Unix	CONTINGENCY PLANNING

Detections

Analytics

Item Search