Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.2 Ensure that Multi-Factor Authentication is 'Enabled' for All Non-Service AccountsCIS Google Cloud Platform Foundation v4.0.0 L1GCP

IDENTIFICATION AND AUTHENTICATION

1.3 Ensure that Security Key Enforcement is Enabled for All Admin AccountsCIS Google Cloud Platform Foundation v4.0.0 L2GCP

IDENTIFICATION AND AUTHENTICATION

1.13 Ensure the operating system has the packages required for multifactor authenticationCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIGUnix

IDENTIFICATION AND AUTHENTICATION

1.176 WN19-DC-000310CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT IIWindows

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 5 L1 OS Windows v1.2.0Windows

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 6 v1.2.0 L1 MongoDBWindows

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 3.6 L1 Unix Audit v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 4 L1 OS Linux v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 5 L1 OS Linux v1.2.0Unix

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 6 v1.2.0 L1 MongoDBUnix

IDENTIFICATION AND AUTHENTICATION

2.3 Ensure authentication is enabled in the sharded clusterCIS MongoDB L1 Unix Audit v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

2.4 Ensure an industry standard authentication mechanism is used - modeCIS MongoDB L2 Windows Audit v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

2.13 Set 'Allow access to voicemail without requiring a PIN' to 'False'CIS Microsoft Exchange Server 2016 UM v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION

3.1.13 Enable server-based authenticationCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

IDENTIFICATION AND AUTHENTICATION

3.1.13 Enable server-based authenticationCIS IBM DB2 v10 v1.1.0 Windows OS Level 2Windows

IDENTIFICATION AND AUTHENTICATION

4.3 Use Active Directory for local user authentication - Enabled = 'true'CIS VMware ESXi 5.5 v1.2.0 Level 1VMware

IDENTIFICATION AND AUTHENTICATION

4.3 Use Active Directory for local user authentication - Review DomainCIS VMware ESXi 5.5 v1.2.0 Level 1VMware

IDENTIFICATION AND AUTHENTICATION

4.3.14 Ensure 'skipResourceOwnerValidation' is set to 'false' in OAuth 2.0CIS IBM WebSphere Liberty v1.0.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

5.1.2 Ensure usernames and UIDs are uniqueCIS IBM AIX 7 v1.1.0 L1Unix

IDENTIFICATION AND AUTHENTICATION

5.1.9 Ensure SSH HostbasedAuthentication is disabledCIS Google Container-Optimized OS v1.2.0 L1 ServerUnix

IDENTIFICATION AND AUTHENTICATION

5.2.2.2 (L1) Ensure multifactor authentication is enabled for all usersCIS Microsoft 365 Foundations v5.0.0 L1 E3microsoft_azure

IDENTIFICATION AND AUTHENTICATION

5.2.3.4 (L1) Ensure all member users are 'MFA capable'CIS Microsoft 365 Foundations v5.0.0 L1 E3microsoft_azure

IDENTIFICATION AND AUTHENTICATION

5.2.3.4 (L1) Ensure all member users are 'MFA capable'CIS Microsoft 365 Foundations v5.0.0 L1 E5microsoft_azure

IDENTIFICATION AND AUTHENTICATION

6.1.2 Ensure that 'multifactor authentication' is 'enabled' for all usersCIS Microsoft Azure Foundations v4.0.0 L1microsoft_azure

IDENTIFICATION AND AUTHENTICATION

6.1.3 Ensure that 'Allow users to remember multifactor authentication on devices they trust' is disabledCIS Microsoft Azure Foundations v4.0.0 L1microsoft_azure

IDENTIFICATION AND AUTHENTICATION

6.2.2 Ensure no legacy '+' entries exist in /etc/passwdCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.2 Ensure no legacy '+' entries exist in /etc/passwd - + entries exist in /etc/passwdCIS SUSE Linux Enterprise Server 11 L1 v2.1.1Unix

IDENTIFICATION AND AUTHENTICATION

6.5 Ensure that 'Number of methods required to reset' is set to '2'CIS Microsoft Azure Foundations v4.0.0 L1microsoft_azure

IDENTIFICATION AND AUTHENTICATION

6.22 Ensure that 'Require Multifactor Authentication to register or join devices with Microsoft Entra' is set to 'Yes'CIS Microsoft Azure Foundations v4.0.0 L1microsoft_azure

IDENTIFICATION AND AUTHENTICATION

13.2 Verify No Legacy "+" Entries Exist in /etc/passwd FileCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0Unix

IDENTIFICATION AND AUTHENTICATION

20.11 Ensure 'Active Directory user accounts are configured to require the use of a Common Access Card (CAC), Personal Identity Verification (PIV)-compliant hardware token, or Alternate Logon Token (ALT)' (STIG DC only)CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

IDENTIFICATION AND AUTHENTICATION

Catalina - Disable Password Authentication for SSHNIST macOS Catalina v1.5.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

ESXi : enable-ad-authVMWare vSphere 6.5 Hardening GuideVMware

IDENTIFICATION AND AUTHENTICATION

FireEye - AAA is enabledTNS FireEyeFireEye

IDENTIFICATION AND AUTHENTICATION

IBM i : Remote Sign-On Control (QRMTSIGN) - '*REJECT'IBM System i Security Reference for V7R2AS/400

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - AAA - netconf loggingTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - AAA - netconf loggingTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Admin Authentication OrderTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Authentication OrderTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Authentication OrderTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Server IPTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Server IPTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r4 HighUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r4 LowUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r5 HighUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r4 ModerateUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r5 ModerateUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Enforce Smartcard AuthenticationNIST macOS Monterey v1.0.0 - CNSSI 1253Unix

IDENTIFICATION AND AUTHENTICATION

Restrict Unauthenticated RPC clientsMSCT Windows Server 2022 v1.0.0Windows

IDENTIFICATION AND AUTHENTICATION