Item Search

NameAudit NamePluginCategory
1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'CIS Microsoft Windows 8.1 v2.4.1 L1Windows

IDENTIFICATION AND AUTHENTICATION

2.1.4 Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC'CIS Oracle Server 12c Windows v3.0.0Windows

SYSTEM AND COMMUNICATIONS PROTECTION

2.1.4 Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC'CIS Oracle Server 12c Linux v3.0.0Unix

SYSTEM AND COMMUNICATIONS PROTECTION

2.2.34 (L1) Ensure 'Profile single process' is set to 'Administrators'CIS Microsoft Windows 8.1 v2.4.1 L1 BitlockerWindows

SYSTEM AND COMMUNICATIONS PROTECTION

2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NGWindows

ACCESS CONTROL

2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Windows 10 Enterprise v4.0.0 L1Windows

ACCESS CONTROL

2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLockerWindows

ACCESS CONTROL

2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Windows 11 Enterprise v4.0.0 L1Windows

ACCESS CONTROL

2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NGWindows

ACCESS CONTROL

2.3.10.10 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Windows 10 Enterprise v4.0.0 L1 NGWindows

ACCESS CONTROL

3.08 init.ora - 'Verify permissions of file referenced by ifile parameter'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
3.25 dads.conf - 'Verify and set permissions'CIS v1.1.0 Oracle 11g OS Windows Level 1Windows
4.5.3 Ensure password reuse is limitedCIS Amazon Linux 2023 Server L1 v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

4.43 listener.ora - 'extproc_dlls = ONLY'CIS v1.1.0 Oracle 11g OS L1Unix

CONFIGURATION MANAGEMENT

5.1 Ensure All Auditable System Actions Commands Are AuditedCIS Oracle Database 23ai v1.0.0 L1 RDBMSOracleDB

AUDIT AND ACCOUNTABILITY

5.3.1 Ensure 'DELETE_CATALOG_ROLE' Is Revoked from Unauthorized 'GRANTEE'CIS Oracle Server 12c DB Unified Auditing v3.0.0OracleDB

ACCESS CONTROL

5.5.3 Ensure password reuse is limitedCIS CentOS Linux 8 Server L1 v2.0.0Unix

IDENTIFICATION AND AUTHENTICATION

6.2.8 Ensure 'OLAP_DBA' Is Revoked From Unauthorized 'GRANTEE'CIS Oracle Database 23ai v1.0.0 L1 RDBMSOracleDB

ACCESS CONTROL, MEDIA PROTECTION

8.2 Ensure the backup and restore tool, 'pgBackRest', is installed and configuredCIS PostgreSQL 13 OS v1.2.0Unix

CONTINGENCY PLANNING

18.8.5.1 Ensure 'Turn On Virtualization Based Security' is set to 'Enabled'CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 DC NGWindows

SYSTEM AND INFORMATION INTEGRITY

18.8.5.3 Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 DC NGWindows

SYSTEM AND INFORMATION INTEGRITY

49.20 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow'CIS Microsoft Intune for Windows 11 v4.0.0 L1Windows

ACCESS CONTROL

ALMA-09-001120 - AlmaLinux OS 9 must automatically lock graphical user sessions after 15 minutes of inactivity.DISA CloudLinux AlmaLinux OS 9 STIG v1r2Unix

ACCESS CONTROL

BIND-9X-000001 - A BIND 9.x server implementation must be running in a chroot(ed) directory structure.DISA BIND 9.x STIG v2r3Unix

SYSTEM AND COMMUNICATIONS PROTECTION

BIND-9X-001002 - The platform on which the name server software is hosted must only run processes and services needed to support the BIND 9.x implementation.DISA BIND 9.x STIG v2r3Unix

CONFIGURATION MANAGEMENT

BIND-9X-001320 - The core BIND 9.x server files must be owned by the root or BIND 9.x process account.DISA BIND 9.x STIG v2r3Unix

CONFIGURATION MANAGEMENT

DG0090-ORACLE11 - Sensitive information stored in the database should be protected by encryption.DISA STIG Oracle 11 Installation v9r1 LinuxUnix
DO0238-ORACLE11 - The directories assigned to the LOG_ARCHIVE_DEST* parameters should be protected from unauthorized access - 'log_archive_dest_n parameter is configured'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB
DO0238-ORACLE11 - The directories assigned to the LOG_ARCHIVE_DEST* parameters should be protected from unauthorized access - 'LOG_MODE = NOARCHIVELOG'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB

CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION

DO0270-ORACLE11 - A minimum of two Oracle redo log groups/files should be defined and configured to be stored on separate, archived physical disks or archived directories on a RAID device - 'V$LOG count > 2'DISA STIG Oracle 11 Instance v9r1 DatabaseOracleDB

AUDIT AND ACCOUNTABILITY

GOOG-10-000500 - Google Android 10 must be configured to not allow more than 10 consecutive failed authentication attempts.AirWatch - DISA Google Android 10.x v2r1MDM

ACCESS CONTROL

GOOG-10-008700 - Google Android 10 users must complete required training.MobileIron - DISA Google Android 10.x v2r1MDM

CONFIGURATION MANAGEMENT

GOOG-10-999999 - All Google Android 10 installations must be removed.AirWatch - DISA Google Android 10.x v2r1MDM

CONFIGURATION MANAGEMENT

O19C-00-000800 - Oracle Database must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.DISA Oracle Database 19c STIG v1r1 DatabaseOracleDB

ACCESS CONTROL

O19C-00-010400 - The directories assigned to the LOG_ARCHIVE_DEST* parameters must be protected from unauthorized access.DISA Oracle Database 19c STIG v1r1 DatabaseOracleDB

CONFIGURATION MANAGEMENT

O112-BP-026600 - The SQLNet SQLNET.ALLOWED_LOGON_VERSION parameter must be set to a value of 12 or higher.DISA STIG Oracle 11.2g v2r5 LinuxUnix

CONFIGURATION MANAGEMENT

WN10-00-000190 - Orphaned security identifiers (SIDs) must be removed from user rights on Windows 10.DISA Microsoft Windows 10 STIG v3r4Windows

CONFIGURATION MANAGEMENT

WN10-AC-000005 - Windows 10 account lockout duration must be configured to 15 minutes or greater.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

WN10-AU-000575 - Windows 10 must be configured to audit MPSSVC Rule-Level Policy Change Successes.DISA Microsoft Windows 10 STIG v3r4Windows

AUDIT AND ACCOUNTABILITY

WN10-AU-000580 - Windows 10 must be configured to audit MPSSVC Rule-Level Policy Change Failures.DISA Microsoft Windows 10 STIG v3r4Windows

AUDIT AND ACCOUNTABILITY

WN10-CC-000365 - Windows 10 must be configured to prevent Windows apps from being activated by voice while the system is locked.DISA Microsoft Windows 10 STIG v3r4Windows

ACCESS CONTROL

ZEBR-10-000500 - Zebra Android 10 must be configured to not allow more than 10 consecutive failed authentication attempts.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

ACCESS CONTROL

ZEBR-10-008700 - Zebra Android 10 users must complete required training.MobileIron - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-008700 - Zebra Android 10 users must complete required training.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-010800 - Zebra Android 10 devices must have the latest available Zebra Android 10 operating system installed.AirWatch - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-010800 - Zebra Android 10 devices must have the latest available Zebra Android 10 operating system installed.MobileIron - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-010800 - Zebra Android 10 devices must have the latest available Zebra Android 10 operating system installed.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-999999 - All Zebra Android 10 installations must be removed.AirWatch - DISA Zebra Android 10 COBO v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-999999 - All Zebra Android 10 installations must be removed.AirWatch - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT

ZEBR-10-999999 - All Zebra Android 10 installations must be removed.MobileIron - DISA Zebra Android 10 COPE v1r2MDM

CONFIGURATION MANAGEMENT