Detections
Analytics

Item Search

NameAudit NamePluginCategory
AIOS-16-014800 - Apple iOS/iPadOS 16 must be configured to disable Auto Unlock of the iPhone by an Apple Watch.AirWatch - DISA Apple iOS/iPadOS 16 v2r1MDM

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

AIOS-18-014800 - Apple iOS/iPadOS 18 must be configured to disable 'Auto Unlock' of the iPhone by an Apple Watch - Auto Unlock of the iPhone by an Apple Watch.AirWatch - DISA Apple iOS/iPadOS 18 v1r4MDM

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

AS24-W1-000690 - Non-privileged accounts on the hosting system must only access Apache web server security-relevant information and functions through a distinct administrative account.DISA STIG Apache Server 2.4 Windows Server v3r3Windows

ACCESS CONTROL

DB2X-00-007000 - DB2 must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasuresDISA STIG IBM DB2 v10.5 LUW v2r1 DatabaseIBM_DB2DB

ACCESS CONTROL

DTOO201 - Connection verification of permissions must be enforced.DISA Microsoft Office System 2016 STIG v2r4Windows

ACCESS CONTROL

DTOO201 - Connection verification of permissions must be enforced.DISA STIG Microsoft Office System 2013 v2r2Windows

ACCESS CONTROL

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.AirWatch - DISA Microsoft Android 11 COBO v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.MobileIron - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.AirWatch - DISA Microsoft Android 11 COPE v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

MSFT-11-002000 - Microsoft Android 11 must be configured to enable encryption for data at rest on removable storage media or alternately, the use of removable storage media must be disabled.MobileIron - DISA Microsoft Android 11 COBO v1r2MDM

ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION

O19C-00-001000 - Oracle Database must enforce approved authorizations for logical access to the system in accordance with applicable policy.DISA Oracle Database 19c STIG v1r1 DatabaseOracleDB

ACCESS CONTROL

OL07-00-020021 - The Oracle Linux operating system must confine SELinux users to roles that conform to least privilege.DISA Oracle Linux 7 STIG v3r3Unix

ACCESS CONTROL

SOL-11.1-090120 - The operating system must prevent non-privileged users from circumventing malicious code protection capabilities.DISA Solaris 11 X86 STIG v3r3Unix

ACCESS CONTROL

SQL4-00-032500 - SQL Server must prevent non-privileged users from executing privileged functionality, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.DISA STIG SQL Server 2014 Instance DB Audit v2r4MS_SQLDB

ACCESS CONTROL

TCAT-AS-001050 - Tomcat user account must be set to nologin.DISA STIG Apache Tomcat Application Server 9 v3r2 MiddlewareUnix

ACCESS CONTROL

WN10-00-000070 - Only accounts responsible for the administration of a system must have Administrator rights on the system.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-SO-000167 - Remote calls to the Security Account Manager (SAM) must be restricted to Administrators.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000005 - The Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000015 - The Act as part of the operating system user right must not be assigned to any groups or accounts.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000040 - The Create a pagefile user right must only be assigned to the Administrators group.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000045 - The Create a token object user right must not be assigned to any groups or accounts.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000060 - The Create symbolic links user right must only be assigned to the Administrators group.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-UR-000120 - The Load and unload device drivers user right must only be assigned to the Administrators group.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN12-RG-000004 - Anonymous access to the registry must be restrictedDISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-RG-000004 - Anonymous access to the registry must be restrictedDISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000003 - The Act as part of the operating system user right must not be assigned to any groups or accounts.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000012 - The Create a token object user right must not be assigned to any groups or accounts.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000013 - The Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000014 - The Create permanent shared objects user right must not be assigned to any groups or accounts.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000023 - The Force shutdown from a remote system user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000027 - The Increase scheduling priority user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000029 - The Lock pages in memory user right must not be assigned to any groups or accounts.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000034 - The Modify firmware environment values user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000040 - The Restore files and directories user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN16-DC-000100 - The Active Directory Domain Controllers Organizational Unit (OU) object must have the proper access control permissions.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN16-DC-000350 - The Add workstations to domain user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN16-UR-000070 - The Back up files and directories user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN16-UR-000080 - The Create a pagefile user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN16-UR-000110 - The Create permanent shared objects user right must not be assigned to any groups or accounts.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN16-UR-000120 - The Create symbolic links user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN16-UR-000210 - The Generate security audits user right must only be assigned to Local Service and Network Service.DISA Microsoft Windows Server 2016 STIG v2r10Windows

ACCESS CONTROL

WN19-00-000170 - Windows Server 2019 default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN19-DC-000090 - Windows Server 2019 Active Directory Group Policy objects must have proper access control permissions.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN19-MS-000060 - Windows Server 2019 must restrict remote calls to the Security Account Manager (SAM) to Administrators on domain-joined member servers and standalone or nondomain-joined systems.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN19-MS-000130 - Windows Server 2019 'Enable computer and user accounts to be trusted for delegation' user right must not be assigned to any groups or accounts on domain-joined member servers and standalone or nondomain-joined systems.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN19-UR-000010 - Windows Server 2019 Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN19-UR-000110 - Windows Server 2019 Force shutdown from a remote system user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN19-UR-000200 - Windows Server 2019 Profile single process user right must only be assigned to the Administrators group.DISA Microsoft Windows Server 2019 STIG v3r5Windows

ACCESS CONTROL

WN22-DC-000070 - Windows Server 2022 permissions on the Active Directory data files must only allow System and Administrators access.DISA Microsoft Windows Server 2022 STIG v2r5Windows

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY

WN22-UR-000160 - Windows Server 2022 lock pages in memory user right must not be assigned to any groups or accounts.DISA Microsoft Windows Server 2022 STIG v2r5Windows

ACCESS CONTROL, SYSTEM AND INFORMATION INTEGRITY