Item Search

Name	Audit Name	Plugin	Category
1.3 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 15 OS v1.1.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.4 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 13 OS v1.2.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.4 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 17 v1.0.0 L1 PostgreSQL	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.4 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 16 v1.1.0 L1 OS Linux Unix	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.4 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 14 OS v 1.2.0	Unix	ACCESS CONTROL, MEDIA PROTECTION
1.5 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 10 OS v1.0.0	Unix	ACCESS CONTROL
1.5 Ensure Data Cluster Initialized Successfully	CIS PostgreSQL 11 OS v1.0.0	Unix	ACCESS CONTROL
3.1.4 Ensure the log file destination directory is set correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.10 Ensure the correct syslog facility is selected	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.20 Ensure 'log_error_verbosity' is set correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.1.21 Ensure 'log_hostname' is set correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
3.2 Ensure the PostgreSQL Audit Extension (pgAudit) is enabled - audit.log	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	AUDIT AND ACCOUNTABILITY
4.4 Ensure excessive DML privileges are revoked	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
4.5 Ensure Row Level Security (RLS) is configured correctly	CIS PostgreSQL 9.6 DB v1.0.0	PostgreSQLDB	ACCESS CONTROL
ACLs: Filter for RFC 3330 addresses (192.0.2.0/24)	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	SYSTEM AND COMMUNICATIONS PROTECTION
ACLs: Filter for RFC 3330 addresses (240.0.0.0/4)	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	SYSTEM AND COMMUNICATIONS PROTECTION
Authentication: local authentication is available as a last resort	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION
BGP: Disable Capability Negotiation	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	SYSTEM AND COMMUNICATIONS PROTECTION
Fortigate - Admin password lockout >= 300 seconds	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Admin SCP - 'disabled'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Alert Emails - 'admin address'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND INFORMATION INTEGRITY
Fortigate - Antispam License - Not Expired	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Disable auto USB installation - 'config'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Does not use self-signed certificate - 'user'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - External Logging - 'fortianalyzer2'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Login Banner - post-login-banner	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Password Complexity - 1 uppercase letter	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Password Complexity - at least 1 char	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Password Complexity - length >= 8	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Password Expiry date <= 30 days	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - RADIUS, LDAP, or TACACS+ response wait period	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - SNMP is enabled	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - SNMP v3 uses SHA instead of MD5	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND COMMUNICATIONS PROTECTION
Fortigate - Syslog2 Logging - severity 'information'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Syslogd Logging - severity 'information'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Use non default admin access ports - 'HTTPS'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Webfilter License - Not Expired	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Password Complexity: Require a minimum length of 8 characters	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : AuthConfig - 'Auth Providers = Facebook'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Consumer Key'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Consumer Key'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Consumer Secret'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Token Issuer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce Consumer Secret'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Salesforce Default Scope'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - No SSO Auth Providers have been configured	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	IDENTIFICATION AND AUTHENTICATION
Salesforce.com : CronTrigger - 'Cron Jobs with Status of BLOCKED'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
SNMP: Use SNMPv3 only	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	IDENTIFICATION AND AUTHENTICATION
Time: System has a primary NTP server set	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	AUDIT AND ACCOUNTABILITY
TiMOS/SR-OS : OS Version is up to date	TNS Alcatel-Lucent TiMOS/Nokia SR-OS Best Practice Audit	Alcatel	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search