Item Search

Name	Audit Name	Plugin	Category
2.3.11.3 (L1) Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 (L1) Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 (L1) Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 (L1) Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.3 Ensure 'Network Security: Allow PKU2U authentication requests to this computer to use online identities' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.11.7 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	IDENTIFICATION AND AUTHENTICATION
17.3.1 Ensure 'Audit Process Creation' is set to include 'Success'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	AUDIT AND ACCOUNTABILITY
17.3.2 (L1) Ensure 'Audit Process Creation' is set to include 'Success'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.3.5 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.6 Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.7 Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.4.8 (L1) Ensure 'WDigest Authentication' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.8.7.1 (L1) Ensure 'Allow remote access to the Plug and Play interface' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	MEDIA PROTECTION
18.8.7.3 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.7.2 (L1) Ensure 'Prevent device metadata retrieval from the Internet' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.30.2 Ensure 'Turn off Data Execution Prevention for Explorer' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.9.2.14 (L1) Ensure 'Require additional authentication at startup: Allow BitLocker without a compatible TPM' is set to 'Enabled: False'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.10.10.2.11 (BL) Ensure 'Require additional authentication at startup: Allow BitLocker without a compatible TPM' is set to 'Enabled: False'	CIS Microsoft Windows 10 Stand-alone v4.0.0 BL	Windows	ACCESS CONTROL
18.10.10.2.11 (BL) Ensure 'Require additional authentication at startup: Allow BitLocker without a compatible TPM' is set to 'Enabled: False'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.10.2.13 (BL) Ensure 'Require additional authentication at startup' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.10.2.14 (BL) Ensure 'Require additional authentication at startup: Allow BitLocker without a compatible TPM' is set to 'Enabled: False'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.17.4 (L1) Ensure 'Enable App Installer ms-appinstaller protocol' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	CONFIGURATION MANAGEMENT
18.10.18.5 Ensure 'Enable App Installer ms-appinstaller protocol' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.10.18.5 Ensure 'Enable App Installer ms-appinstaller protocol' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.10.18.6 (L1) Ensure 'Enable App Installer ms-appinstaller protocol' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	CONFIGURATION MANAGEMENT
18.10.18.6 (L1) Ensure 'Enable App Installer ms-appinstaller protocol' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NG	Windows	CONFIGURATION MANAGEMENT
CIS_Microsoft_Windows_Server_2016_STIG_v4.0.0_MS_CAT_II.audit from CIS Microsoft Windows Server 2016 STIG Benchmark v4.0.0	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II	Windows
CIS_Microsoft_Windows_Server_2019_STIG_v4.0.0_DC_CAT_I.audit from CIS Microsoft Windows Server 2019 STIG Benchmark v4.0.0	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT I	Windows
CIS_Microsoft_Windows_Server_2019_STIG_v4.0.0_DC_CAT_II.audit from CIS Microsoft Windows Server 2019 STIG Benchmark v4.0.0	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II	Windows
CIS_Microsoft_Windows_Server_2022_STIG_v3.0.0_DC_CAT_I.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v3.0.0	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT I	Windows
CIS_Microsoft_Windows_Server_2022_STIG_v3.0.0_MS_CAT_I.audit from CIS Microsoft Windows Server 2022 STIG Benchmark v3.0.0	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT I	Windows

Detections

Analytics

Item Search