| 1.6.1.9 Ensure non-privileged users are prevented from executing privileged functions | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG | Unix | ACCESS CONTROL |
| 1.8 RHEL-09-211045 | CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT I | Unix | ACCESS CONTROL |
| 1.9 RHEL-09-211050 | CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT I | Unix | ACCESS CONTROL |
| 1.10 RHEL-09-211055 | CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II | Unix | ACCESS CONTROL |
| 1.95 APPL-14-002069 | CIS Apple macOS 14 (Sonoma) STIG v1.0.0 CAT I | Unix | ACCESS CONTROL |
| 1.304 RHEL-09-432010 | CIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II | Unix | ACCESS CONTROL |
| 1.373 OL08-00-040400 | CIS Oracle Linux 8 STIG v1.0.0 CAT II | Unix | ACCESS CONTROL |
| ALMA-09-006730 - The Ctrl-Alt-Delete key sequence must be disabled on AlmaLinux OS 9. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | ACCESS CONTROL |
| ALMA-09-006840 - AlmaLinux OS 9 must have the sudo package installed. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | ACCESS CONTROL |
| ALMA-09-007060 - AlmaLinux OS 9 must enable kernel parameters to enforce discretionary access control on hardlinks. | DISA CloudLinux AlmaLinux OS 9 STIG v1r3 | Unix | ACCESS CONTROL |
| APPL-12-002069 - The macOS system must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA STIG Apple macOS 12 v1r9 | Unix | ACCESS CONTROL |
| APPL-15-002069 - The macOS system must require an administrator password to modify systemwide preferences. | DISA Apple macOS 15 (Sequoia) STIG v1r4 | Unix | ACCESS CONTROL |
| EX19-ED-000174 - Role-Based Access Control must be defined for privileged and nonprivileged users. | DISA Microsoft Exchange 2019 Edge Server STIG v2r2 | Windows | ACCESS CONTROL |
| EX19-MB-000173 - Role-Based Access Control must be defined for privileged and nonprivileged users. | DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2 | Windows | ACCESS CONTROL |
| GOOG-12-012200 - Google Android 12 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)]. | MobileIron - DISA Google Android 12 COBO v1r2 | MDM | ACCESS CONTROL |
| GOOG-14-012200 - Google Android 14 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB]. | AirWatch - DISA Google Android 14 COPE v2r2 | MDM | ACCESS CONTROL |
| GOOG-15-012200 - Google Android 15 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB]. | AirWatch - DISA Google Android 15 COBO v1r2 | MDM | ACCESS CONTROL |
| GOOG-15-012200 - Google Android 15 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB]. | MobileIron - DISA Google Android 15 COPE v1r2 | MDM | ACCESS CONTROL |
| HONW-13-012200 - Honeywell Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)]. | MobileIron - DISA Honeywell Android 13 COBO v1r1 | MDM | ACCESS CONTROL |
| HONW-13-012200 - Honeywell Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)]. | AirWatch - DISA Honeywell Android 13 COPE v1r1 | MDM | ACCESS CONTROL |
| HONW-13-012200 - Honeywell Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)]. | MobileIron - DISA Honeywell Android 13 COPE v1r1 | MDM | ACCESS CONTROL |
| MD7X-00-006800 MongoDB must prevent nonprivileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA MongoDB Enterprise Advanced 7.x STIG v1r1 | MongoDB | ACCESS CONTROL |
| MSFT-11-005200 - The mobile operating system must allow only the Administrator (MDM) to perform the following management function: Enable/disable location services. | AirWatch - DISA Microsoft Android 11 COBO v1r2 | MDM | ACCESS CONTROL |
| OL08-00-040400 - OL 8 must prevent nonprivileged users from executing privileged functions, including disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA Oracle Linux 8 STIG v2r5 | Unix | ACCESS CONTROL |
| OL09-00-000230 - OL 9 must have the sudo package installed. | DISA Oracle Linux 9 STIG v1r2 | Unix | ACCESS CONTROL |
| OL09-00-002412 - OL 9 must be configured so that the systemd Ctrl-Alt-Delete burst key sequence is disabled. | DISA Oracle Linux 9 STIG v1r2 | Unix | ACCESS CONTROL |
| OL09-00-002413 - OL 9 must be configured so that the x86 Ctrl-Alt-Delete key sequence is disabled. | DISA Oracle Linux 9 STIG v1r2 | Unix | ACCESS CONTROL |
| RHEL-08-010455 - RHEL 8 must elevate the SELinux context when an administrator calls the sudo command. | DISA Red Hat Enterprise Linux 8 STIG v2r4 | Unix | ACCESS CONTROL |
| RHEL-09-432010 - RHEL 9 must have the sudo package installed. | DISA Red Hat Enterprise Linux 9 STIG v2r4 | Unix | ACCESS CONTROL |
| WBSP-AS-000240 - The WebSphere Application Server users in a LDAP user registry group must be authorized for that group. | DISA IBM WebSphere Traditional 9 Windows STIG v1r1 | Windows | ACCESS CONTROL |
| WN11-RG-000005 - Default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000015 - The 'Act as part of the operating system' user right must not be assigned to any groups or accounts. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000035 - The 'Change the system time' user right must only be assigned to Administrators and Local Service. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000040 - The 'Create a pagefile' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000050 - The 'Create global objects' user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000055 - The 'Create permanent shared objects' user right must not be assigned to any groups or accounts. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000100 - The 'Force shutdown from a remote system' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000120 - The 'Load and unload device drivers' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000125 - The 'Lock pages in memory' user right must not be assigned to any groups or accounts. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000140 - The 'Modify firmware environment values' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000150 - The 'Profile single process' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000160 - The 'Restore files and directories' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN11-UR-000165 - The 'Take ownership of files or other objects' user right must only be assigned to the Administrators group. | DISA Microsoft Windows 11 STIG v2r4 | Windows | ACCESS CONTROL |
| WN22-MS-000130 - Windows Server 2022 Enable computer and user accounts to be trusted for delegation user right must not be assigned to any groups or accounts on domain-joined member servers and standalone or nondomain-joined systems. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
| WN22-UR-000020 - Windows Server 2022 Act as part of the operating system user right must not be assigned to any groups or accounts. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
| WN22-UR-000070 - Windows Server 2022 create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
| WN22-UR-000140 - Windows Server 2022 increase scheduling priority: user right must only be assigned to the Administrators group. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
| WN22-UR-000150 - Windows Server 2022 load and unload device drivers user right must only be assigned to the Administrators group. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
| WN22-UR-000200 - Windows Server 2022 profile single process user right must only be assigned to the Administrators group. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
| WN22-UR-000210 - Windows Server 2022 restore files and directories user right must only be assigned to the Administrators group. | DISA Microsoft Windows Server 2022 STIG v2r5 | Windows | ACCESS CONTROL |
