Item Search

Name	Audit Name	Plugin	Category
1.2.3 Ensure 'Account lockout threshold' is set to '3 or fewer invalid logon attempt(s), but not 0' (STIG only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DC	Windows	ACCESS CONTROL
2.2.8 (L1) Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.9 (L1) Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.2.10 (L1) Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users' (MS only)	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.10.4 (L1) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L1) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L1) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L2) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L2) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Windows Server 2012 DC L2 v3.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L2) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L2 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L2) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L2) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L2 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.4 (L2) Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2025 v1.0.0 L2 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.6 Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 MS	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.6 Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Member Server	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.6 Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.6 Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Domain Controller	Windows	IDENTIFICATION AND AUTHENTICATION
2.3.10.6 Ensure 'Network access: Do not allow storage of passwords and credentials for network authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L2 MS	Windows	IDENTIFICATION AND AUTHENTICATION
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'apache account is configured'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd services are running as apache user'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
3.1 Ensure the Apache Web Server Runs As a Non-Root User - 'httpd.conf Group = apache'	CIS Apache HTTP Server 2.2 L1 v3.6.0	Unix	ACCESS CONTROL
5.131 - Windows is prevented from using Windows Update to search for drivers.	DISA Windows Vista STIG v6r41	Windows	CONFIGURATION MANAGEMENT
18.9.11.2.3 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.2.8 (BL) Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Save BitLocker recovery information to AD DS for operating system drives' is set to 'Enabled: True'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, CONTINGENCY PLANNING
18.9.11.2.8 Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Configure storage of BitLocker recovery information to AD DS:' is set to 'Enabled: Store recovery passwords and key packages'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.8 Ensure 'Choose how BitLocker-protected operating system drives can be recovered: Configure storage of BitLocker recovery information to AD DS:' is set to 'Enabled: Store recovery passwords and key packages'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.16 Ensure 'Require additional authentication at startup: Configure TPM startup key and PIN:' is set to 'Enabled: Do not allow startup key and PIN with TPM'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.16 Ensure 'Require additional authentication at startup: Configure TPM startup key and PIN:' is set to 'Enabled: Do not allow startup key and PIN with TPM'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.16 Ensure 'Require additional authentication at startup: Configure TPM startup key and PIN:' is set to 'Enabled: Do not allow startup key and PIN with TPM'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.35.1 Ensure 'Prevent the computer from joining a homegroup' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.9.59.3.2.1 Ensure 'Allow users to connect remotely by using Remote Desktop Services' is set to 'Disabled'	CIS Windows 7 Workstation Level 2 v3.2.0	Windows	CONFIGURATION MANAGEMENT
18.10.56.3.10.1 (L2) Ensure 'Set time limit for active but idle Remote Desktop Services sessions' is set to 'Enabled: 15 minutes or less, but not Never (0)'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L2	Windows	ACCESS CONTROL
18.10.56.3.10.1 Ensure 'Set time limit for active but idle Remote Desktop Services sessions' is set to 'Enabled: 15 minutes or less, but not Never (0)'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Member Server	Windows	ACCESS CONTROL
18.10.57.3.10.1 (L2) Ensure 'Set time limit for active but idle Remote Desktop Services sessions' is set to 'Enabled: 15 minutes or less, but not Never (0)'	CIS Windows Server 2012 DC L2 v3.0.0	Windows	ACCESS CONTROL
18.10.57.3.10.1 (L2) Ensure 'Set time limit for active but idle Remote Desktop Services sessions' is set to 'Enabled: 15 minutes or less, but not Never (0)'	CIS Microsoft Windows 10 Enterprise v4.0.0 L2 BL NG	Windows	ACCESS CONTROL
18.10.57.3.10.1 (L2) Ensure 'Set time limit for active but idle Remote Desktop Services sessions' is set to 'Enabled: 15 minutes or less, but not Never (0)'	CIS Microsoft Windows 11 Stand-alone v4.0.0 L2	Windows	ACCESS CONTROL
18.10.89.1 (L2) Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v3.0.1 L2 DC	Windows	CONFIGURATION MANAGEMENT
18.10.89.1 (L2) Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.89.1 Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.89.1 Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L2 Member Server	Windows	CONFIGURATION MANAGEMENT
18.10.89.1 Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L2 MS	Windows	CONFIGURATION MANAGEMENT
18.10.90.1 (L2) Ensure 'Allow Remote Shell Access' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
19.1.3.4 (L1) Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL
Allow Windows Ink Workspace	MSCT Windows 10 v2004 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow Windows Ink Workspace	MSCT Windows 11 v24H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Allow Windows Ink Workspace	MSCT Windows 11 v23H2 v1.0.0	Windows	CONFIGURATION MANAGEMENT
Windows Device Configuration - Camera	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Windows Device Configuration - Geolocation	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
Windows Device Configuration - NFC	Tenable Best Practices for Microsoft Intune Windows v1.0	microsoft_azure	ACCESS CONTROL, CONFIGURATION MANAGEMENT
WN10-00-000107 - Copilot in Windows must be disabled for Windows 10.	DISA Microsoft Windows 10 STIG v3r4	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search