Item Search

Name	Audit Name	Plugin	Category
1.1.3.5.6 Set 'Domain member: Disable machine account password changes' to 'Disabled'	CIS Windows 8 L1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION
1.215 WN16-SO-000120	CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II	Windows	IDENTIFICATION AND AUTHENTICATION
1.217 WN22-SO-000100	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II	Windows	CONFIGURATION MANAGEMENT
2.3.6.4 (L1) Ensure 'Domain member: Disable machine account password changes' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
2.3.6.4 (L1) Ensure 'Domain member: Disable machine account password changes' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	ACCESS CONTROL
3.10 Ensure Windows local groups are not SQL Logins	CIS Microsoft SQL Server 2025 v1.0.0 L1 Database Engine MS_SQLDB	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
3.10 Ensure Windows local groups are not SQL Logins	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
18.8.37.1 Ensure 'Enable RPC Endpoint Mapper Client Authentication' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	IDENTIFICATION AND AUTHENTICATION
18.9.28.2 (L1) Ensure 'Do not display network selection UI' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	ACCESS CONTROL
18.9.77.3.1 Ensure 'Configure local setting override for reporting to Microsoft MAPS' is set to 'Disabled'	CIS Microsoft Windows 8.1 v2.4.1 L1	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND INFORMATION INTEGRITY
18.9.77.10.2 (L1) Ensure 'Turn on e-mail scanning' is set to 'Enabled'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SYSTEM AND INFORMATION INTEGRITY
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	CONFIGURATION MANAGEMENT
18.9.90.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
18.10.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
18.10.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.6.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	ACCESS CONTROL
18.10.6.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.8.1 (L1) Ensure 'Disallow Autoplay for non-volume devices' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 NG	Windows	MEDIA PROTECTION
18.10.8.1 Ensure 'Disallow Autoplay for non-volume devices' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	MEDIA PROTECTION
18.10.8.2 (L1) Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	MEDIA PROTECTION
18.10.8.2 Ensure 'Set the default behavior for AutoRun' is set to 'Enabled: Do not execute any autorun commands'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1	Windows	MEDIA PROTECTION
18.10.10.2.11 Ensure 'Configure use of hardware-based encryption for operating system drives' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	ACCESS CONTROL
18.10.37.1.1 (L2) Ensure 'Turn off Windows Location Provider' is set to 'Enabled'	CIS Windows Server 2012 DC L2 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.42.13.3 Ensure 'Scan removable drives' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v5.0.1 L1 BL	Windows	MEDIA PROTECTION, SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.2 (L1) Ensure 'Scan all downloaded files and attachments' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.43.10.4 (L1) Ensure 'Turn on behavior monitoring' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v4.0.0 L1 MS	Windows	SYSTEM AND INFORMATION INTEGRITY
18.10.80.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2025 Stand-alone v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2019 Stand-alone v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v4.0.0 L1 DC	Windows	ACCESS CONTROL
18.10.81.1 (L1) Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT
18.10.82.1 Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2025 v2.0.0 L1 DC	Windows	ACCESS CONTROL
18.10.82.1 Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v5.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.82.1 Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows Server 2022 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.82.1 Ensure 'Allow user control over installs' is set to 'Disabled'	CIS Microsoft Windows 11 Stand-alone v5.0.0 L1 BL	Windows	ACCESS CONTROL
WN10-SO-000055 - The maximum age for machine account passwords must be configured to 30 days or less.	DISA Microsoft Windows 10 STIG v3r6	Windows	CONFIGURATION MANAGEMENT
WN16-CC-000330 - Windows Server 2016 Windows SmartScreen must be enabled.	DISA Microsoft Windows Server 2016 STIG v2r10	Windows	CONFIGURATION MANAGEMENT
WN19-SO-000100 - Windows Server 2019 maximum age for machine account passwords must be configured to 30 days or less.	DISA Microsoft Windows Server 2019 STIG v3r8	Windows	CONFIGURATION MANAGEMENT
WN25-SO-000100 - Windows Server 2025 maximum age for machine account passwords must be configured to 30 days or less.	DISA Microsoft Windows Server 2025 STIG v1r1	Windows	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search