Item Search

Name	Audit Name	Plugin	Category
1.4.1 Ensure 'Idle timeout' is less than or equal to 10 minutes for device management	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL
1.4.2 Ensure 'Failed Attempts' and 'Lockout Time' for Authentication Profile are properly configured	CIS Palo Alto Firewall 10 v1.2.0 L1	Palo_Alto	ACCESS CONTROL
1.7.4 Ensure GDM screen locks when the user is idle	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	ACCESS CONTROL
1.7.4 Ensure GDM screen locks when the user is idle	CIS Debian Linux 12 v1.1.0 L1 Server	Unix	ACCESS CONTROL
1.7.4 Ensure GDM screen locks when the user is idle	CIS Ubuntu Linux 22.04 LTS v2.0.0 L1 Server	Unix	ACCESS CONTROL
1.8.4 Ensure GDM screen locks when the user is idle	CIS Ubuntu Linux 20.04 LTS Server L1 v2.0.1	Unix	ACCESS CONTROL
1.8.5 Ensure GDM screen locks cannot be overridden	CIS Ubuntu Linux 20.04 LTS Server L1 v2.0.1	Unix	ACCESS CONTROL
1.8.5 Ensure GDM screen locks cannot be overridden	CIS Ubuntu Linux 20.04 LTS Workstation L1 v2.0.1	Unix	ACCESS CONTROL
1.8.7 Ensure screensaver lock-enabled is set	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
1.8.10 Ensure GNOME Idle activation is set	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
1.8.12 Ensure GNOME Lock Delay is configured	CIS Amazon Linux 2 STIG v2.0.0 STIG	Unix	ACCESS CONTROL
2.3.7.3 (L1) Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.7.3 (L1) Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.7.3 (L1) Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.7.3 Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.7.3 Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.7.3 Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
2.3.7.3 Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.7.4 (L1) Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
2.3.7.4 (L1) Ensure 'Interactive logon: Machine inactivity limit' is set to '900 or fewer second(s), but not 0'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
2.3.7.8 (L1) Ensure 'Interactive logon: Require Domain Controller Authentication to unlock workstation' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2022 v4.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.7.8 (L1) Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher	CIS Microsoft Windows 11 Stand-alone v4.0.0 L1	Windows	ACCESS CONTROL
2.3.7.8 (L1) Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL	Windows	ACCESS CONTROL
2.3.7.8 Ensure 'Interactive logon: Require Domain Controller Authentication to unlock workstation' is set to 'Enabled' (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.7.9 (L1) Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL	Windows	ACCESS CONTROL
2.3.7.9 (L1) Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher	CIS Microsoft Windows 11 Enterprise v4.0.0 L1	Windows	ACCESS CONTROL
2.3.7.9 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher	CIS Microsoft Windows Server 2019 STIG v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.7.10 Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or 'Force Logoff' (STIG DC & MS only)	CIS Microsoft Windows Server 2022 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
4.5.5 Ensure default user shell timeout is configured	CIS Ubuntu Linux 20.04 LTS Workstation L1 v2.0.1	Unix	ACCESS CONTROL
4.5.5 Ensure default user shell timeout is configured	CIS Debian 10 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
4.7.1.7 Ensure CDE screensaver lock is enabled	CIS IBM AIX 7 v1.0.0 L1	Unix	ACCESS CONTROL
5.3 Ensure the Sudo Timeout Period Is Set to Zero	CIS Apple macOS 14.0 Sonoma Cloud-tailored v1.1.0 L1	Unix	ACCESS CONTROL
5.4 Ensure a Separate Timestamp Is Enabled for Each User/tty Combo	CIS Apple macOS 14.0 Sonoma Cloud-tailored v1.1.0 L1	Unix	ACCESS CONTROL
5.4.3.2 Ensure default user shell timeout is configured	CIS Debian Linux 12 v1.1.0 L1 Workstation	Unix	ACCESS CONTROL
5.4.3.2 Ensure default user shell timeout is configured	CIS Debian Linux 11 v2.0.0 L1 Server	Unix	ACCESS CONTROL
5.6.3 Ensure default user shell timeout is 900 seconds or less	CIS Fedora 28 Family Linux Server L1 v2.0.0	Unix	ACCESS CONTROL
5.7 Ensure an Administrator Account Cannot Log In to Another User's Active and Locked Session	CIS Apple macOS 12.0 Monterey v4.0.0 L1	Unix	ACCESS CONTROL
5.8 (L1) Ensure idle ESXi shell and SSH sessions time out after 300 seconds or less	CIS VMware ESXi 7.0 v1.5.0 L1	VMware	ACCESS CONTROL
18.4.9 (L1) Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)' is set to 'Enabled: 5 or fewer seconds'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
18.4.9 (L1) Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)' is set to 'Enabled: 5 or fewer seconds'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
18.5.9 (L1) Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires' is set to 'Enabled: 5 or fewer seconds'	CIS Microsoft Windows Server 2025 v1.0.0 L1 DC	Windows	ACCESS CONTROL
18.5.10 (L1) Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires' is set to 'Enabled: 5 or fewer seconds'	CIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.5.10 (L1) Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires' is set to 'Enabled: 5 or fewer seconds'	CIS Microsoft Windows 10 Stand-alone v4.0.0 L1 BL NG	Windows	ACCESS CONTROL
18.9.32.6.2 (L1) Ensure 'Require a password when a computer wakes (plugged in)' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.1 (L1) Ensure 'Enable screen saver' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.1 (L1) Ensure 'Enable screen saver' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.2 (L1) Ensure 'Password protect the screen saver' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
19.1.3.3 (L1) Ensure 'Password protect the screen saver' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
19.1.3.4 (L1) Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
49.11 (L1) Ensure 'Interactive logon: Smart card removal behavior' is set to 'Lock Workstation' or higher	CIS Microsoft Intune for Windows 10 v4.0.0 L1	Windows	ACCESS CONTROL

Detections

Analytics

Item Search