Item Search

Name	Audit Name	Plugin	Category
2.2.9 Disable Samba Support - Make sure that /network/samba is disabled. Note this check is only applicable for Solaris 10 >= 8/07	CIS Solaris 10 L1 v5.2	Unix
18.9.27.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	AUDIT AND ACCOUNTABILITY
18.9.27.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.1.1 Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.3.1 Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.3.1 Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.10.25.4.1 Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.1.1 (L1) Ensure 'Application: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.2.1 (L1) Ensure 'Security: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 DC	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.3.1 (L1) Ensure 'Setup: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	AUDIT AND ACCOUNTABILITY
18.10.26.4.1 (L1) Ensure 'System: Control Event Log behavior when the log file reaches its maximum size' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	AUDIT AND ACCOUNTABILITY
WN12-00-000001 - Server systems must be located in a controlled access area, accessible only to authorized personnel.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-00-000006 - Policy must require that system administrators (SAs) be trained for the operating systems used by systems under their control.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-00-000008 - Administrative accounts must not be used with applications that access the Internet, such as web browsers, or with potential Internet sources, such as email.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-00-000017 - System-related documentation must be backed up in accordance with local recovery time and recovery point objectives.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-AC-000008 - The built-in Windows password complexity policy must be enabled.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	IDENTIFICATION AND AUTHENTICATION
WN12-AC-000010-DC - Kerberos user logon restrictions must be enforced.	DISA Windows Server 2012 and 2012 R2 DC STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-CC-000150 - WDigest Authentication must be disabled.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-SO-000066 - The system must be configured to force users to log off when their allowed logon hours expire.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN12-SO-000068 - The system must be configured to the required LDAP client signing level.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-SO-000073 - The shutdown option must not be available from the logon dialog box.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-SO-000075 - The system must be configured to require case insensitivity for non-Windows subsystems.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-SO-000081 - Windows must elevate all applications in User Account Control, not just signed ones.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN12-SO-000084 - User Account Control must switch to the secure desktop when prompting for elevation.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
WN12-SV-000103 - The Peer Networking Identity Manager service must be disabled if installed.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-UC-000008 - Windows Help Ratings feedback must be turned off.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-UC-000009 - Zone information must be preserved when saving attachments.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-UC-000011 - The system must notify antivirus when file attachments are opened.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	CONFIGURATION MANAGEMENT
WN12-UR-000003 - The Act as part of the operating system user right must not be assigned to any groups or accounts.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000006-MS - The Allow log on through Remote Desktop Services user right must only be assigned to the Administrators group and other approved groups.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000014 - The Create permanent shared objects user right must not be assigned to any groups or accounts.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000019-MS - The Deny log on as a service user right on member servers must be configured to prevent access from highly privileged domain accounts on domain systems. No other groups or accounts must be assigned this right.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000023 - The Force shutdown from a remote system user right must only be assigned to the Administrators group.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000029 - The Lock pages in memory user right must not be assigned to any groups or accounts.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000034 - The Modify firmware environment values user right must only be assigned to the Administrators group.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL
WN12-UR-000040 - The Restore files and directories user right must only be assigned to the Administrators group.	DISA Windows Server 2012 and 2012 R2 MS STIG v3r7	Windows	ACCESS CONTROL

Detections

Analytics

Item Search