1.1.2 Ensure two emergency access accounts have been defined | CIS Microsoft 365 Foundations E3 L1 v3.1.0 | microsoft_azure | ACCESS CONTROL |
2.1.1.1.5 Set maximimum value for 'ip ssh authentication-retries' | CIS Cisco IOS 12 L1 v4.0.0 | Cisco | ACCESS CONTROL |
2.2 Disable/Modify Default Accts - 'security.passwd.rootaccess.enable = off' | TNS NetApp Data ONTAP 7G | NetApp | ACCESS CONTROL |
2.3 Lock the BIND User Account | CIS BIND DNS v3.0.0 Authoritative Name Server | Unix | ACCESS CONTROL |
2.4.2.8 Disable 'Allow guests to connect to shared folders' (SMB) | CIS Apple OSX 10.5 Leopard L1 v1.0.0 | Unix | ACCESS CONTROL |
2.13 Oracle Installation - 'Oracle software owner account name NOT 'oracle'' | CIS Oracle 9 10 Windows Level2 v2.01 | Windows | ACCESS CONTROL |
2.14 Oracle Installation - 'Oracle software owner account name NOT oracle' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | ACCESS CONTROL |
3.2 - Default Accounts - Review default accounts | NetApp Security Hardening Guide for ONTAP 9 v1.7.0 | Netapp_API | ACCESS CONTROL |
4.2.20 Ensure SSH LoginGraceTime is set to one minute or less | CIS Debian 10 Workstation L1 v2.0.0 | Unix | ACCESS CONTROL |
4.3 Review Users, Groups, and Roles - Users list | CIS v1.1.0 IBM DB2 v10 Windows OS Level 1 | Windows | ACCESS CONTROL |
5.3.2 Ensure 'Access reviews' for Guest Users are configured | CIS Microsoft 365 Foundations E5 L1 v3.1.0 | microsoft_azure | ACCESS CONTROL |
5.3.3 Ensure 'Access reviews' for high privileged Azure AD roles are configured | CIS Microsoft 365 Foundations E5 L1 v3.1.0 | microsoft_azure | ACCESS CONTROL |
5.4.3 Ensure default group for the root account is GID 0 | CIS Oracle Linux 7 Server L1 v3.0.0 | Unix | ACCESS CONTROL |
5.4.3 Ensure default group for the root account is GID 0 | CIS Oracle Linux 7 Workstation L1 v3.0.0 | Unix | ACCESS CONTROL |
5.4.3 Ensure default group for the root account is GID 0 | CIS SUSE Linux Enterprise Workstation 12 L1 v2.1.0 | Unix | ACCESS CONTROL |
5.5 Ensure access to the su command is restricted - wheel group contains root | CIS Amazon Linux v2.0.0 L1 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - AFP Sharing | CIS Apple macOS 10.12 L1 v1.1.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - AFP Sharing | CIS Apple macOS 10.13 L1 v1.0.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - AFP Sharing | CIS Apple OSX 10.10 Yosemite L1 v1.1.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple OSX 10.11 El Capitan L1 v1.0.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple OSX 10.11 El Capitan L1 v1.1.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple OSX 10.10 Yosemite L1 v1.1.0 | Unix | ACCESS CONTROL |
6.1.4 Disable 'Allow guests to connect to shared folders' - SMB Sharing | CIS Apple OSX 10.9 Mavericks L1 v1.0.0 | Unix | ACCESS CONTROL |
6.1.5 Remove Guest home folder | CIS Apple macOS 10.12 L1 v1.1.0 | Unix | ACCESS CONTROL |
6.1.5 Remove Guest home folder | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
6.1.5 Remove Guest home folder | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
6.2.13 Ensure all groups in /etc/passwd exist in /etc/group | CIS SUSE Linux Enterprise 15 Server L1 v1.0.0 | Unix | ACCESS CONTROL |
6.2.13 Ensure all groups in /etc/passwd exist in /etc/group | CIS Oracle Linux 7 Workstation L1 v3.0.0 | Unix | ACCESS CONTROL |
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group | CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.0.0 | Unix | ACCESS CONTROL |
6.2.18 Ensure shadow group is empty | CIS Oracle Linux 7 Server L1 v3.0.0 | Unix | ACCESS CONTROL |
6.2.18 Ensure shadow group is empty | CIS Oracle Linux 7 Workstation L1 v3.0.0 | Unix | ACCESS CONTROL |
7.2.2 Ensure SharePoint and OneDrive integration with Azure AD B2B is enabled | CIS Microsoft 365 Foundations E3 L1 v3.1.0 | microsoft_azure | ACCESS CONTROL |
7.5 Change Home Directory for root Account | CIS Solaris 10 v5.2 | Unix | ACCESS CONTROL |
7.9 Lock Inactive User Accounts - Check if definact is set to 35. | CIS Solaris 10 v5.2 | Unix | ACCESS CONTROL |
9.2.11 Check Groups in /etc/passwd | CIS Red Hat Enterprise Linux 5 L1 v2.2 | Unix | ACCESS CONTROL |
12.35 Oracle Installation - 'Oracle software owner account name NOT 'oracle'' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
12.35 Oracle Installation - 'Oracle software owner account name NOT 'oracle'' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | ACCESS CONTROL |
Account Management - Review account groups assigned to 'netadmin' | Tenable Cisco Viptela SD-WAN - vEdge | Cisco_Viptela | ACCESS CONTROL |
Account Management - Review account groups assigned to 'netadmin' | Tenable Cisco Viptela SD-WAN - vSmart | Cisco_Viptela | ACCESS CONTROL |
Brocade - Review Enabled Accounts | Tenable Best Practices Brocade FabricOS | Brocade | ACCESS CONTROL |
BSI-100-2: S 4.13: Careful allocation of identifiers: Every GID must be valid | BSI-100-2 Red Hat Linux 2005 | Unix | ACCESS CONTROL |
Fortigate - Admin SCP - 'disabled' | TNS Fortigate FortiOS Best Practices v2.0.0 | FortiGate | ACCESS CONTROL |
Review the list of Current Rackspace Users | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
Review the list of Rackspace Tenants | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
Salesforce.com : Monitoring Login History - 'Inactive System Administrators' | TNS Salesforce Best Practices Audit v1.2.0 | Salesforce.com | ACCESS CONTROL |
Salesforce.com : Setting Password Policies - 'lockout period >= 30 minutes' | TNS Salesforce Best Practices Audit v1.1.0 | Salesforce.com | ACCESS CONTROL |
WG060 - The web server application or system password is not changed at least annually. | DISA STIG IIS 6.0 Installation v6r1 | Windows | ACCESS CONTROL |