| 1.1 Ensure packages are obtained from authorized repositories | CIS PostgreSQL 9.5 OS v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| ESXi : config-firewall-access - 'CIM SLP allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'DNS Client allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'Fault Tolerance blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'FTP Client blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'HBR allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'SSH Server allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'vCenter Update Manager blocked' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'vMotion allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'VMware vCenter Agent allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-firewall-access - 'WOL allowed' | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : config-snmp - 'snmp.receiver.X.community' | VMWare vSphere 5.X Hardening Guide | VMware | IDENTIFICATION AND AUTHENTICATION |
| ESXi : disable-mob | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : enable-ad-auth | VMWare vSphere 5.X Hardening Guide | VMware | IDENTIFICATION AND AUTHENTICATION |
| ESXi : enable-nfc-ssl | VMWare vSphere 5.X Hardening Guide | VMware | SYSTEM AND COMMUNICATIONS PROTECTION |
| ESXi : enable-remote-dump | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : limit-cim-access | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : remove-revoked-certificates | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : set-password-complexity | VMWare vSphere 5.X Hardening Guide | VMware | IDENTIFICATION AND AUTHENTICATION |
| ESXi : unique-chap-secrets | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : verify-acceptance-level-accepted | VMWare vSphere 5.X Hardening Guide | VMware | |
| ESXi : vmdk-zero-out | VMWare vSphere 5.X Hardening Guide | VMware | |
| SSO : check-SSO-Password-expiration | VMWare vSphere 5.X Hardening Guide | VMware | |
| SSO : check-SSO-Password-policy | VMWare vSphere 5.X Hardening Guide | VMware | |
| SSO : restrict-sso-db-user | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : apply-os-patches | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : block-unused-ports | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : check-privilege-reassignment | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : disable-mob | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : restrict-datastore-web | VMWare vSphere 5.X Hardening Guide | VMware | |
| vCenter : restrict-guest-control | VMWare vSphere 5.X Hardening Guide | VMware | |
| VCSA : change-default-password | VMWare vSphere 5.X Hardening Guide | VMware | |
| VM : control-resource-usage | VMWare vSphere 5.X Hardening Guide | VMware | |
| VM : disable-unnecessary-functions | VMWare vSphere 5.X Hardening Guide | VMware | |
| VM : minimize-console-VNC-use | VMWare vSphere 5.X Hardening Guide | VMware | |
| VM : secure-guest-os | VMWare vSphere 5.X Hardening Guide | VMware | |
| VM : use-secure-serial-communication | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : disable-dvportgroup-autoexpand | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : document-vlans | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : no-reserved-vlans | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : reject-forged-transmit-dvportgroup | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : restrict-mgmt-network-access-jumpbox | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : restrict-port-level-overrides | VMWare vSphere 5.X Hardening Guide | VMware | |
| vNetwork : upstream-bpdu-stp | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : isolate-vum-webserver | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : no-vum-self-signed-certs | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : patch-vum-os | VMWare vSphere 5.X Hardening Guide | VMware | |
| VUM : secure-vum-os | VMWare vSphere 5.X Hardening Guide | VMware | |
| WebClient : verify-ssl-certificates | VMWare vSphere 5.X Hardening Guide | VMware | |
| WN12-00-000210 - PowerShell script block logging must be enabled on Windows 2012/2012 R2 - Patch | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | AUDIT AND ACCOUNTABILITY |
