Detections
Analytics

Item Search

NameAudit NamePluginCategory
3.127 - IPSec Exemptions are limited.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

5.018 - Windows Messenger (MSN Messenger, .NET messenger) is run at system startup.DISA Windows Vista STIG v6r41Windows

CONFIGURATION MANAGEMENT

9.9 Ensure that 'Java version' is currently supported (if in use)CIS Microsoft Azure Foundations v3.0.0 L1microsoft_azure

SYSTEM AND SERVICES ACQUISITION

18.10.75.2.2 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn' or 'Enabled: Warn and prevent bypass' (STIG only)CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.75.2.2 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn' or 'Enabled: Warn and prevent bypass' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

SYSTEM AND INFORMATION INTEGRITY

18.10.75.2.2 Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn' or 'Enabled: Warn and prevent bypass' (STIG only)CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

SYSTEM AND INFORMATION INTEGRITY

19.7.15.1.2 Ensure 'Turn on off details pane' is set to 'Enabled: Always hide'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.71 Ensure 'Windows PowerShell 2.0' is 'not installed'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.71 Ensure 'Windows PowerShell 2.0' is 'not installed'CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.71 Ensure 'Windows PowerShell 2.0' is 'not installed'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.71 Ensure 'Windows PowerShell 2.0' is 'not installed'CIS Microsoft Windows Server 2019 STIG v3.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

20.71 Ensure 'Windows PowerShell 2.0' is 'not installed' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG DCWindows

CONFIGURATION MANAGEMENT

20.71 Ensure 'Windows PowerShell 2.0' is 'not installed' (STIG only)CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MSWindows

CONFIGURATION MANAGEMENT

DISA_F5_BIG-IP_AFM_v2r2.audit from DISA F5 BIG-IP Advanced Firewall Manager v2r2 STIGDISA F5 BIG-IP Advanced Firewall Manager STIG v2r2F5
DISA_F5_BIG-IP_LTM_v2r4.audit from DISA F5 BIG-IP Local Traffic Manager v2r4 STIGDISA F5 BIG-IP Local Traffic Manager STIG v2r4F5
GEN002860 - Audit logs must be rotated daily.DISA STIG for Oracle Linux 5 v2r1Unix

CONFIGURATION MANAGEMENT

VCWN-06-000001 - The system must prohibit password reuse for a minimum of five generations.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000002 - The system must not automatically refresh client sessions.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND COMMUNICATIONS PROTECTION

VCWN-06-000003 - The system must enforce a 60-day maximum password lifetime restriction.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000004 - The system must terminate management sessions after 10 minutes of inactivity.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND COMMUNICATIONS PROTECTION

VCWN-06-000005 - The vCenter Server users must have the correct roles assigned.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND COMMUNICATIONS PROTECTION

VCWN-06-000009 - The system must use Active Directory authentication.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000010 - The system must limit the use of the built-in SSO administrative account.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000013 - The distributed port group Forged Transmits policy must be set to reject.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000015 - The system must ensure the distributed port group Promiscuous Mode policy is set to reject.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000016 - The system must only send NetFlow traffic to authorized collectors.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000017 - The system must not override port group settings at the port level on distributed switches.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000018 - All port groups must be configured to a value other than that of the native VLAN.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000019 - All port groups must not be configured to VLAN 4095 unless Virtual Guest Tagging (VGT) is required.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000020 - All port groups must not be configured to VLAN values reserved by upstream physical switches.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000021 - The system must enable SSL for Network File Copy (NFC).DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000022 - The vCenter Server services must be ran using a service account instead of a built-in Windows account.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000023 - The system must ensure the vpxuser auto-password change meets policy.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000024 - The system must ensure the vpxuser password meets length policy.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000025 - The system must disable the managed object browser at all times, when not required for troubleshooting or maintenance.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000027 - The system must minimize access to the vCenter server.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000028 - Log files must be cleaned up after failed installations of the vCenter Server.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000032 - A least-privileges assignment must be used for the Update Manager database user.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000033 - A least-privileges assignment must be used for the vCenter Server database user.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000034 - The system must use unique service accounts when applications connect to vCenter.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000035 - vSphere Client plugins must be verified.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT

VCWN-06-000036 - The system must produce audit records containing information to establish what type of events occurred.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND INFORMATION INTEGRITY

VCWN-06-000039 - Passwords must be at least 15 characters in length.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000041 - Passwords must contain at least one lowercase character.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000042 - Passwords must contain at least one numeric character.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

IDENTIFICATION AND AUTHENTICATION

VCWN-06-000045 - The system must limit the maximum number of failed login attempts to three.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

ACCESS CONTROL

VCWN-06-000048 - The system must alert administrators on permission creation operations.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND INFORMATION INTEGRITY

VCWN-06-000049 - The system must alert administrators on permission deletion operations.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND INFORMATION INTEGRITY

VCWN-06-000050 - The system must alert administrators on permission update operations.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

SYSTEM AND INFORMATION INTEGRITY

VCWN-06-000053 - The connectivity between VSAN Health Check and public Hardware Compatibility List must be disabled or restricted.DISA STIG VMware vSphere vCenter 6.x v1r4VMware

CONFIGURATION MANAGEMENT