Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.6.1.9 Ensure non-privileged users are prevented from executing privileged functionsCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIGUnix

ACCESS CONTROL

AIOS-16-014800 - Apple iOS/iPadOS 16 must be configured to disable Auto Unlock of the iPhone by an Apple Watch.MobileIron - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

AIOS-17-014800 - Apple iOS/iPadOS 17 must be configured to disable 'Auto Unlock' of the iPhone by an Apple Watch - Auto Unlock of the iPhone by an Apple Watch.MobileIron - DISA Apple iOS/iPadOS 17 v2r1MDM

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

ALMA-09-006730 - The Ctrl-Alt-Delete key sequence must be disabled on AlmaLinux OS 9.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

ACCESS CONTROL

ALMA-09-006840 - AlmaLinux OS 9 must have the sudo package installed.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

ACCESS CONTROL

APPL-12-002069 - The macOS system must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.DISA STIG Apple macOS 12 v1r9Unix

ACCESS CONTROL

DTOO201 - Connection verification of permissions must be enforced.DISA Microsoft Office System 2016 STIG v2r4Windows

ACCESS CONTROL

DTOO201 - Connection verification of permissions must be enforced.DISA STIG Microsoft Office System 2013 v2r2Windows

ACCESS CONTROL

EX19-MB-000173 - Role-Based Access Control must be defined for privileged and nonprivileged users.DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2Windows

ACCESS CONTROL

GOOG-14-012200 - Google Android 14 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB].AirWatch - DISA Google Android 14 COPE v2r2MDM

ACCESS CONTROL

GOOG-15-012200 - Google Android 15 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB].MobileIron - DISA Google Android 15 COPE v1r2MDM

ACCESS CONTROL

JUEX-NM-000930 - The Juniper EX switch must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures.DISA Juniper EX Series Network Device Management v2r3Juniper

ACCESS CONTROL

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.AirWatch - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.AirWatch - DISA Microsoft Android 11 COBO v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.MobileIron - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

O19C-00-001000 - Oracle Database must enforce approved authorizations for logical access to the system in accordance with applicable policy.DISA Oracle Database 19c STIG v1r1 DatabaseOracleDB

ACCESS CONTROL

RHEL-07-020021 - The Red Hat Enterprise Linux operating system must confine SELinux users to roles that conform to least privilege.DISA Red Hat Enterprise Linux 7 STIG v3r15Unix

ACCESS CONTROL

RHEL-07-020023 - The Red Hat Enterprise Linux operating system must elevate the SELinux context when an administrator calls the sudo command.DISA Red Hat Enterprise Linux 7 STIG v3r15Unix

ACCESS CONTROL

RHEL-08-010455 - RHEL 8 must elevate the SELinux context when an administrator calls the sudo command.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

ACCESS CONTROL

RHEL-08-040400 - RHEL 8 must prevent nonprivileged users from executing privileged functions, including disabling, circumventing, or altering implemented security safeguards/countermeasures.DISA Red Hat Enterprise Linux 8 STIG v2r3Unix

ACCESS CONTROL

RHEL-09-432010 - RHEL 9 must have the sudo package installed.DISA Red Hat Enterprise Linux 9 STIG v2r4Unix

ACCESS CONTROL

SOL-11.1-090120 - The operating system must prevent non-privileged users from circumventing malicious code protection capabilities.DISA STIG Solaris 11 X86 v3r1Unix

ACCESS CONTROL

WBSP-AS-000240 - The WebSphere Application Server users in a LDAP user registry group must be authorized for that group.DISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows

ACCESS CONTROL

WN10-UR-000050 - The Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000065 - The Debug programs user right must only be assigned to the Administrators group.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000100 - The Force shutdown from a remote system user right must only be assigned to the Administrators group.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000110 - The Impersonate a client after authentication user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000145 - The Perform volume maintenance tasks user right must only be assigned to the Administrators group.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN11-UR-000035 - The 'Change the system time' user right must only be assigned to Administrators and Local Service.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000045 - The 'Create a token object' user right must not be assigned to any groups or accounts.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000060 - The 'Create symbolic links' user right must only be assigned to the Administrators group.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000065 - The 'Debug programs' user right must only be assigned to the Administrators group.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000100 - The 'Force shutdown from a remote system' user right must only be assigned to the Administrators group.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000125 - The 'Lock pages in memory' user right must not be assigned to any groups or accounts.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000140 - The 'Modify firmware environment values' user right must only be assigned to the Administrators group.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000150 - The 'Profile single process' user right must only be assigned to the Administrators group.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN11-UR-000160 - The 'Restore files and directories' user right must only be assigned to the Administrators group.DISA Microsoft Windows 11 STIG v2r3Windows

ACCESS CONTROL

WN19-00-000170 - Windows Server 2019 default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained.DISA Microsoft Windows Server 2019 STIG v3r4Windows

ACCESS CONTROL

WN19-DC-000080 - Windows Server 2019 Active Directory SYSVOL directory must have the proper access control permissions.DISA Microsoft Windows Server 2019 STIG v3r4Windows

ACCESS CONTROL

WN19-DC-000110 - Windows Server 2019 organization created Active Directory Organizational Unit (OU) objects must have proper access control permissions.DISA Microsoft Windows Server 2019 STIG v3r4Windows

ACCESS CONTROL

WN19-UR-000050 - Windows Server 2019 Create a pagefile user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2019 STIG v3r4Windows

ACCESS CONTROL

WN19-UR-000190 - Windows Server 2019 Perform volume maintenance tasks user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2019 STIG v3r4Windows

ACCESS CONTROL

WN19-UR-000200 - Windows Server 2019 Profile single process user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2019 STIG v3r4Windows

ACCESS CONTROL

WN22-00-000170 - Windows Server 2022 default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL

WN22-UR-000040 - Windows Server 2022 back up files and directories user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL

WN22-UR-000070 - Windows Server 2022 create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL

WN22-UR-000080 - Windows Server 2022 create permanent shared objects user right must not be assigned to any groups or accounts.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL

WN22-UR-000090 - Windows Server 2022 create symbolic links user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL

WN22-UR-000130 - Windows Server 2022 impersonate a client after authentication user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL

WN22-UR-000180 - Windows Server 2022 modify firmware environment values user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2022 STIG v2r4Windows

ACCESS CONTROL