| 2.3 Ensure an IAM Role for Amazon EC2 is created for Web Tier | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.4 Ensure an IAM Role for Amazon EC2 is created for App Tier | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.5 Ensure AutoScaling Group Launch Configuration for Web Tier is configured to use a customer created Web-Tier IAM Role | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.6 Ensure AutoScaling Group Launch Configuration for App Tier is configured to use an App-Tier IAM Role | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.13.2 - PCM - enhanced RBAC (AIX 6.1 only) - 'Enhanced RBAC is enabled' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | ACCESS CONTROL |
| 2.13.2 - PCM - enhanced RBAC (AIX 6.1 only) - 'lskst -t dev info' | CIS AIX 5.3/6.1 L2 v1.1.0 | Unix | ACCESS CONTROL |
| 4.16 init.ora - 'o7_dictionary_accessibility = FALSE' | CIS v1.1.0 Oracle 11g OS L2 | Unix | ACCESS CONTROL |
| 4.16 init.ora - 'o7_dictionary_accessibility = FALSE' | CIS v1.1.0 Oracle 11g OS Windows Level 2 | Windows | ACCESS CONTROL |
| 5. OpenStack Compute - Policy.json - 'os_compute_api:os-migrate-server:migrate_live' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple OSX 10.9 L1 v1.3.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple OSX 10.11 El Capitan L1 v1.1.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.4 Use a separate timestamp for each user/tty combo | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.4.6 Ensure users must provide password for escalation | CIS Amazon Linux 2 STIG v1.0.0 L3 | Unix | ACCESS CONTROL |
| 5.4.7 Ensure users must re-autenticate for privilege escalation | CIS Amazon Linux 2 STIG v1.0.0 L3 | Unix | ACCESS CONTROL |
| 5.5 Use a separate timestamp for each user/tty combo | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 18 - Role Based Authentication per queue | TNS Best Practice JBoss 7 Linux | Unix | ACCESS CONTROL |
| 19 - Cluster Authentication | TNS Best Practice JBoss 7 Linux | Unix | ACCESS CONTROL |
| 34. OpenStack Compute - Policy.json - 'compute_extension:instance_usage_audit_log' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 40. OpenStack Compute - Policy.json - 'compute_extension:aggregates' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 55. OpenStack Compute - Policy.json - 'compute_extension:flavormanage' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 58. OpenStack Compute - Policy.json - 'compute_extension:fping:all_tenants' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 59. OpenStack Compute - Policy.json - 'compute_extension:os-assisted-volume-snapshots:delete' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 62. OpenStack Compute - Policy.json - 'os_compute_api:os-migrations:index' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 63. OpenStack Compute - Policy.json - 'os_compute_api:os-pause-server:unpause' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 70. OpenStack Compute - Policy.json - 'compute_extension:os-assisted-volume-snapshots:create' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 72. OpenStack Compute - Policy.json - 'os_compute_api:os-aggregates:remove_host' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 73. OpenStack Compute - Policy.json - 'compute_extension:admin_actions:unlock' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 74. OpenStack Compute - Policy.json - 'compute_extension:networks' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 78. OpenStack Compute - Policy.json - 'os_compute_api:os-assisted-volume-snapshots:delete' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 81. OpenStack Compute - Policy.json - 'os_compute_api:os-suspend-server:suspend' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 82. OpenStack Compute - Policy.json - 'os_compute_api:os-networks' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 83. OpenStack Compute - Policy.json - 'compute_extension:networks_associate' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 93. OpenStack Compute - Policy.json - 'os_compute_api:os-fping:all_tenants' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 94. OpenStack Compute - Policy.json - 'compute_extension:admin_actions:injectNetworkInfo' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 98. OpenStack Compute - Policy.json - 'os_compute_api:os-cloudpipe' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 104. OpenStack Compute - Policy.json - 'compute_extension:evacuate' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 110. OpenStack Compute - Policy.json - 'os_compute_api:os-aggregates:show' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 112. OpenStack Compute - Policy.json - 'os_compute_api:server-metadata:update' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 126. OpenStack Compute - Policy.json - 'os_compute_api:os-server-diagnostics' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 130. OpenStack Compute - Policy.json - 'compute_extension:os-server-external-events:create' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 133. OpenStack Compute - Policy.json - 'os_compute_api:os-flavor-access:remove_tenant_access' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 138. OpenStack Compute - Policy.json - 'compute_extension:cells:create' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 140. OpenStack Compute - Policy.json - 'compute_extension:extended_server_attributes' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 146. OpenStack Compute - Policy.json - 'compute:start' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 147. OpenStack Compute - Policy.json - 'compute_extension:flavor_access:addTenantAccess' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| Review the list of active Rackspace Role Names (RBAC) | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
| Review the List of Users with ROLE_NAME | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
