Item Search

Name	Audit Name	Plugin	Category
1.1.1.4 Ensure hfsplus kernel module is not available	CIS AlmaLinux OS 9 v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure hfsplus kernel module is not available	CIS SUSE Linux Enterprise 15 v2.0.1 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure hfsplus kernel module is not available	CIS Oracle Linux 9 v2.0.0 L1 Workstation	Unix	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure hfsplus kernel module is not available	CIS Red Hat Enterprise Linux 9 v2.0.0 L1 Server	Unix	CONFIGURATION MANAGEMENT
1.1.1.4 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian 9 Workstation L1 v1.0.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled	CIS CentOS 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS Distribution Independent Linux Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS Ubuntu Linux 16.04 LTS Server L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - lsmod	CIS Ubuntu Linux 16.04 LTS Workstation L1 v2.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian Family Server L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Ubuntu Linux 18.04 LXD Host L1 Workstation v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.1.5 Ensure mounting of hfsplus filesystems is disabled - modprobe	CIS Debian Family Workstation L1 v1.0.0	Unix	CONFIGURATION MANAGEMENT
1.1.22 Disable Mounting of hfsplus Filesystems - install hfsplus /bin/true'	CIS Red Hat Enterprise Linux 5 L2 v2.2.1	Unix	CONFIGURATION MANAGEMENT
2.1.1 Ensure a 'Consent Message' has been 'Configured'	AirWatch - CIS Apple iOS 17 Benchmark v1.1.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.2.1.11 Ensure 'Allow Handoff' is set to 'Disabled'	AirWatch - CIS Apple iOS 18 v1.0.0 L2 End User Owned	MDM	ACCESS CONTROL, MEDIA PROTECTION
2.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	AirWatch - CIS Apple iOS 17 Benchmark v1.1.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	MobileIron - CIS Apple iOS 17 v1.1.0 End User Owned L1	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	AirWatch - CIS Apple iOS 18 Benchmark v1.0.0 L1 End User Owned	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
2.2.27 Ensure 'Deny log on as a batch job' to include 'Guests, Enterprise Admins Group, and Domain Admins Group' (STIG MS only)	CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.1.3 Ensure 'Accounts: Guest account status' is set to 'Disabled' (STIG only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	IDENTIFICATION AND AUTHENTICATION
2.4.3 Ensure 'Maximum Auto-Lock' is set to '2 minutes' or less	AirWatch - CIS Apple iOS 13 and iPadOS 13 v1.0.0 End User Owned L1	MDM	ACCESS CONTROL
2.4.5 Ensure 'Maximum grace period for device lock' is set to 'Immediately'	MobileIron - CIS Apple iOS 17 v1.1.0 End User Owned L1	MDM	ACCESS CONTROL
2.4.5 Ensure 'Maximum grace period for device lock' is set to 'Immediately'	MobileIron - CIS Apple iPadOS 18 v1.0.0 L1 End User Owned	MDM	ACCESS CONTROL
2.5.1 Ensure Siri Is Disabled	CIS Apple macOS 14.0 Sonoma v2.1.0 L1	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.6.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 10.15 Catalina v3.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.6.1.3 Ensure iCloud Drive Document and Desktop Sync Is Disabled	CIS Apple macOS 11.0 Big Sur v4.0.0 L2	Unix	ACCESS CONTROL, CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.6.4 iCloud Drive Document and Desktop sync - desktop	CIS Apple macOS 10.13 L2 v1.1.0	Unix	CONFIGURATION MANAGEMENT
2.7.4 iCloud Drive Document sync	CIS Apple macOS 10.12 L2 v1.2.0	Unix	CONFIGURATION MANAGEMENT
3.2.1.1 Ensure 'Allow screenshots and screen recording' is set to 'Disabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L2	MDM	ACCESS CONTROL
3.2.1.10 Ensure 'Force encrypted backups' is set to 'Enabled'	AirWatch - CIS Apple iOS 17 Institution Owned L1	MDM	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1.14 Ensure 'Allow installing configuration profiles' is set to 'Disabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.1.21 Ensure 'Treat AirDrop as unmanaged destination' is set to 'Enabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
3.2.1.21 Ensure 'Treat AirDrop as unmanaged destination' is set to 'Enabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
3.2.1.24 Ensure 'Allow Handoff' is set to 'Disabled'	AirWatch - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	ACCESS CONTROL, MEDIA PROTECTION
3.2.1.27 Ensure 'Allow password sharing (supervised only)' is set to 'Disabled'	MobileIron - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT
3.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	AirWatch - CIS Apple iOS 18 v1.0.0 L1 Institution Owned	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	AirWatch - CIS Apple iOS 17 Institution Owned L1	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.2.2.1 Ensure 'Force fraud warning' is set to 'Enabled'	AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1	MDM	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
3.4.1 Ensure 'Allow simple value' is set to 'Disabled'	MobileIron - CIS Apple iOS 12 v1.0.0 Institution Owned L1	MDM	IDENTIFICATION AND AUTHENTICATION
3.4.5 Ensure 'Maximum grace period for device lock' is set to 'Immediately'	MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1	MDM	ACCESS CONTROL
3.6.1 Ensure 'Allow user to move messages from this account' is set to 'Disabled'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
5.4.1 Ensure password creation requirements are configured - lcredit	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.1 Ensure password creation requirements are configured - password-auth retry=3	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.1 Ensure password creation requirements are configured - password-auth try_first_pass	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.1 Ensure password creation requirements are configured - system-auth try_first_pass	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation	Unix	IDENTIFICATION AND AUTHENTICATION
5.4.1 Ensure password creation requirements are configured - ucredit	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server	Unix	IDENTIFICATION AND AUTHENTICATION
JUEX-NM-000490 - The Juniper EX switch must use an an NTP service that is hosted by a trusted source or a DOD-compliant enterprise or local NTP server.	DISA Juniper EX Series Network Device Management v2r3	Juniper	IDENTIFICATION AND AUTHENTICATION

Detections

Analytics

Item Search