| 1.0.4 Use non-standard account names - '!= dasusr1' | CIS IBM DB2 OS L1 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.0.4 Use non-standard account names - '!= db2admin' | CIS IBM DB2 OS L1 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.0.4 Use non-standard account names - '!= db2fenc1' | CIS IBM DB2 OS L1 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.2.2 - MobileIron - Enable Fraudulent Website Warning | MobileIron - CIS Apple iOS 8 v1.0.0 L1 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| 1.2.3 - MobileIron - Disable Auto Fill for Contact Information | MobileIron - CIS Apple iOS 9 v1.0.0 L2 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| 1.2.3 Ensure HTTP and Telnet options are disabled for the Management Interface | CIS Palo Alto Firewall 7 Benchmark L1 v1.0.0 | Palo_Alto | CONFIGURATION MANAGEMENT |
| 1.2.4 - MobileIron - Disable Auto Fill for Names and Passwords | MobileIron - CIS Apple iOS 8 v1.0.0 L2 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| 1.2.5 - MobileIron - Disable Auto Fill for Credit Card Information | MobileIron - CIS Apple iOS 8 v1.0.0 L2 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| 1.2.6 - MobileIron - Delete Saved Password Information | MobileIron - CIS Apple iOS 8 v1.0.0 L2 | MDM | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| 1.3.25 - /etc/inetd.conf - 'exec has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.30 - /etc/inetd.conf - 'uucp has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.31 - /etc/inetd.conf - 'time-tcp has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.36 - /etc/inetd.conf - 'chargen-udp has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.38 - /etc/inetd.conf - 'dtspc has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.41 - /etc/inetd.conf - 'rstatd has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 1.3.51 - /etc/inetd.conf - 'fingerd has been disabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | CONFIGURATION MANAGEMENT |
| 2.3 Only enable FTP if absolutely necessary - Uncomment service ftp in /etc/inet/inetd.conf | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 2.3 Only enable ftpd if absolutely necessary | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 2.4 Only enable rlogin/rsh/rcp if absolutely necessary (login) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 2.04 tkprof - 'Remove from system' - removed | CIS v1.1.0 Oracle 11g OS Windows Level 1 | Windows | CONFIGURATION MANAGEMENT |
| 2.7 Only enable Kerberos-related daemons if absolutely necessary (kpasswdd_server_enable) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 2.07 otrace - 'Disable' - no .dat files | CIS v1.1.0 Oracle 11g OS Windows Level 1 | Windows | CONFIGURATION MANAGEMENT |
| 3.1 Disable login prompts on serial ports (ttyd1) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 3.1 Disable login prompts on serial ports (ttyd3) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 3.3.7 Disable unused task scheduler - 'sched_enable = off' | CIS IBM DB2 OS L2 v1.2.0 | Unix | CONFIGURATION MANAGEMENT |
| 3.5 Disable boot services if possible - Ensure file /etc/rc3.d/S16boot.server does not exist (Solaris 9) | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 3.5 Disable the email server if possible (sendmail_msp_queue_enable) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 3.6 Disable other standard boot services - Ensure file /etc/rc2.d/S72autoinstall does not exist. | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 3.10 Only enable automount daemon if absolutely necessary - Ensure file /etc/rc2.d/S74autofs does NOT exist. | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 3.12 Only enable NIS if absolutely necessary (nis_yppasswdd_enable) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 3.12 Only enable NIS if absolutely necessary (rpc_ypupdated_enable) | CIS FreeBSD v1.0.5 | Unix | CONFIGURATION MANAGEMENT |
| 3.13 Only enable directory server if absolutely necessary - Ensure file /etc/rc2.d/S72directory does NOT exist. | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 3.14 Only enable the LDAP cache manager if absolutely necessary - Ensure file /etc/rc2.d/S71ldap.client does NOT exist. | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 3.17 Only enable GUI login if absolutely necessary - Ensure file /etc/rc2.d/S99dtlogin does NOT exist (Solaris 2.6 or later) | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 4.4.2 Disable IPv6 - options ipv6 disable=1 | CIS Red Hat Enterprise Linux 5 L1 v2.2.1 | Unix | CONFIGURATION MANAGEMENT |
| 4.05 init.ora - 'remote_listener = NULL String' | CIS v1.1.0 Oracle 11g OS L1 | Unix | CONFIGURATION MANAGEMENT |
| 4.17 spfile<sid>.ora - 'Remove the following from the spfile: dispatches= (PROTOCOL=TCP) (SERVICE=<sid>XDB)' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | CONFIGURATION MANAGEMENT |
| 4.17 spfile<sid>.ora - 'Remove the following from the spfile: dispatches= (PROTOCOL=TCP) (SERVICE=<sid>XDB)' | CIS v1.1.0 Oracle 11g OS L2 | Unix | CONFIGURATION MANAGEMENT |
| 4.29 cman.ora - 'remote_admin = NO' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | CONFIGURATION MANAGEMENT |
| 4.29 cman.ora - 'remote_admin = NO' | CIS v1.1.0 Oracle 11g OS L2 | Unix | CONFIGURATION MANAGEMENT |
| 5.13 OAS - 'SSL Version - Set SSL version ssl_version = 3.0' | CIS v1.1.0 Oracle 11g OS L2 | Unix | CONFIGURATION MANAGEMENT |
| 6.6 Ensure LDAP is not enabled | CIS Debian Linux 7 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT |
| 7.1 Set higher security level for sadmind service | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 7.6 Disable XDMCP port, Check if Dtlogin.requestPort is set correctly. | CIS Solaris 9 v1.3 | Unix | CONFIGURATION MANAGEMENT |
| 18.8.36.1 Ensure 'Configure Offer Remote Assistance' is set to 'Disabled' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | CONFIGURATION MANAGEMENT |
| 18.8.37.2 Ensure 'Restrict Unauthenticated RPC clients' is set to 'Enabled: Authenticated' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | CONFIGURATION MANAGEMENT |
| 18.9.60.1 Ensure 'Prevent downloading of enclosures' is set to 'Enabled' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | CONFIGURATION MANAGEMENT |
| Ensure no users have .rhosts files | Tenable Cisco Firepower Management Center OS Best Practices Audit | Unix | CONFIGURATION MANAGEMENT |
| Ensure users' .netrc Files are not group or world accessible | Tenable Cisco Firepower Management Center OS Best Practices Audit | Unix | CONFIGURATION MANAGEMENT |
| Fortigate - Review and disable unused interfaces | TNS Fortigate FortiOS Best Practices v2.0.0 | FortiGate | CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION |
