| 1.2.1 Restrict Access to VTY Sessions | CIS Cisco NX-OS v1.2.0 L1 | Cisco | ACCESS CONTROL, CONFIGURATION MANAGEMENT, MAINTENANCE, SYSTEM AND INFORMATION INTEGRITY |
| 1.2.5 Ensure Exec Timeout for Remote Administrative Sessions (VTY) is set to less than 10 | CIS Cisco NX-OS v1.2.0 L1 | Cisco | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.6 Set the Maximum Number of VTY Sessions | CIS Cisco NX-OS v1.2.0 L1 | Cisco | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.7 Disable the Telnet Feature | CIS Cisco NX-OS v1.2.0 L1 | Cisco | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 4.7.3.7 Ensure sshd HostbasedAuthentication is disabled | CIS IBM AIX 7 v1.0.0 L1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 4.7.3.8 Ensure sshd IgnoreRhosts is enabled | CIS IBM AIX 7 v1.0.0 L1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 10.3.1.2 Ensure that Storage Account access keys are periodically regenerated | CIS Microsoft Azure Foundations v4.0.0 L1 | microsoft_azure | ACCESS CONTROL, CONFIGURATION MANAGEMENT, MAINTENANCE |
| ARST-ND-000700 - The Arista network device must be configured to implement cryptographic mechanisms using a FIPS 140-2 approved algorithm to protect the confidentiality of remote maintenance sessions. | DISA STIG Arista MLS EOS 4.2x NDM v2r1 | Arista | MAINTENANCE |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Big Sur - Ensure System Volume is Read Only | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Ensure System Volume is Read Only | NIST macOS Big Sur v1.4.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Ensure System Volume is Read Only | NIST macOS Big Sur v1.4.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Ensure System Volume is Read Only | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Big Sur - Ensure System Volume is Read Only | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| CASA-ND-001150 - The Cisco ASA must be configured to implement cryptographic mechanisms using a FIPS 140-2 approved algorithm to protect the confidentiality of remote maintenance sessions. | DISA STIG Cisco ASA NDM v2r2 | Cisco | MAINTENANCE |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Catalina - Ensure System Volume is Read Only | NIST macOS Catalina v1.5.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Ensure System Volume is Read Only | NIST macOS Catalina v1.5.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Ensure System Volume is Read Only | NIST macOS Catalina v1.5.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Ensure System Volume is Read Only | NIST macOS Catalina v1.5.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Ensure System Volume is Read Only | NIST macOS Catalina v1.5.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Catalina - Verify remote disconnection of sessions | NIST macOS Catalina v1.5.0 - All Profiles | Unix | MAINTENANCE |
| JUEX-NM-000510 - The Juniper EX switches must be configured to use FIPS-validated Keyed-Hash Message Authentication Code (HMAC) to protect the integrity of nonlocal maintenance and diagnostic communications. | DISA Juniper EX Series Network Device Management v2r2 | Juniper | MAINTENANCE |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
| Monterey - Ensure System Volume is Read Only | NIST macOS Monterey v1.0.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Ensure System Volume is Read Only | NIST macOS Monterey v1.0.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Ensure System Volume is Read Only | NIST macOS Monterey v1.0.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Ensure System Volume is Read Only | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Ensure System Volume is Read Only | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
| Monterey - Verify remote disconnection of sessions | NIST macOS Monterey v1.0.0 - All Profiles | Unix | MAINTENANCE |
| SYMP-NM-000290 - The Symantec ProxySG Web Management Console and SSH sessions must implement cryptographic mechanisms to protect the confidentiality of nonlocal maintenance and diagnostic communications. | DISA Symantec ProxySG Benchmark NDM v1r2 | BlueCoat | MAINTENANCE |
| WN11-CC-000350 - The Windows Remote Management (WinRM) service must not allow unencrypted traffic. | DISA Microsoft Windows 11 STIG v2r3 | Windows | MAINTENANCE |
