| 2.3 Ensure an IAM Role for Amazon EC2 is created for Web Tier | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.4 Ensure an IAM Role for Amazon EC2 is created for App Tier | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.5 Ensure AutoScaling Group Launch Configuration for Web Tier is configured to use a customer created Web-Tier IAM Role | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 2.6 Ensure AutoScaling Group Launch Configuration for App Tier is configured to use an App-Tier IAM Role | CIS Amazon Web Services Three-tier Web Architecture L1 1.0.0 | amazon_aws | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple OSX 10.11 El Capitan L1 v1.1.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple OSX 10.9 L1 v1.3.0 | Unix | ACCESS CONTROL |
| 5.3 Reduce the sudo timeout period | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.4 Use a separate timestamp for each user/tty combo | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.5 Use a separate timestamp for each user/tty combo | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 12. OpenStack Compute - Policy.json - 'os_compute_api:os-admin-actions:reset_state' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 13. OpenStack Identity - Policy.json - 'identity:list_users_in_group' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 18 - Role Based Authentication per queue | TNS Best Practice JBoss 7 Linux | Unix | ACCESS CONTROL |
| 19 - Cluster Authentication | TNS Best Practice JBoss 7 Linux | Unix | ACCESS CONTROL |
| 20. OpenStack Compute - Policy.json - 'os_compute_api:os-cells:sync_instances' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 25. OpenStack Compute - Policy.json - 'os_compute_api:os-migrate-server:migrate' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 27. OpenStack Compute - Policy.json - 'admin_api' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 33. OpenStack Compute - Policy.json - 'compute_extension:cells:update' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 38. OpenStack Compute - Policy.json - 'default' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 41. OpenStack Compute - Policy.json - 'os_compute_api:os-aggregates:set_metadata' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 51. OpenStack Compute - Policy.json - 'os_compute_api:os-flavor-extra-specs:update' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 53. OpenStack Compute - Policy.json - 'compute_extension:admin_actions:resetState' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 54. OpenStack Compute - Policy.json - 'os_compute_api:os-simple-tenant-usage:list' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 56. OpenStack Compute - Policy.json - 'os_compute_api:server-metadata:delete' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 57. OpenStack Compute - Policy.json - 'compute_extension:fixed_ips' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 60. OpenStack Compute - Policy.json - 'compute_extension:services' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 64. OpenStack Compute - Policy.json - 'compute_extension:used_limits_for_admin' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 68. OpenStack Compute - Policy.json - 'os_compute_api:os-instance-usage-audit-log' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 71. OpenStack Compute - Policy.json - 'compute_extension:admin_actions:lock' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 80. OpenStack Compute - Policy.json - 'compute_extension:hosts' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 86. OpenStack Compute - Policy.json - 'os_compute_api:os-shelve:shelve_offload' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 91. OpenStack Compute - Policy.json - 'os_compute_api:server-metadata:index' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 95. OpenStack Compute - Policy.json - 'compute_extension:shelveOffload' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 101. OpenStack Compute - Policy.json - 'compute:create:forced_host' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 104. OpenStack Identity - Policy.json - 'identity:update_policy' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 106. OpenStack Compute - Policy.json - 'os_compute_api:os-flavor-extra-specs:create' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 109. OpenStack Identity - Policy.json - 'identity:create_policy_association_for_endpoint' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 114. OpenStack Compute - Policy.json - 'os_compute_api:os-evacuate' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 115. OpenStack Identity - Policy.json - 'identity:check_endpoint_in_project' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 116. OpenStack Identity - Policy.json - 'identity:list_groups_for_user' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 120. OpenStack Compute - Policy.json - 'compute_extension:server_diagnostics' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 120. OpenStack Identity - Policy.json - 'identity:change_password' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 127. OpenStack Identity - Policy.json - 'identity:ec2_create_credential' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 134. OpenStack Identity - Policy.json - 'service_role' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 139. OpenStack Compute - Policy.json - 'os_compute_api:os-cells' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 142. OpenStack Compute - Policy.json - 'compute_extension:accounts' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| 143. OpenStack Compute - Policy.json - 'os_compute_api:os-floating-ips-bulk' | TNS OpenStack Nova/Compute Security Guide | Unix | ACCESS CONTROL |
| Review the list of active Rackspace Role Names (RBAC) | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
| Review the List of Users with ROLE_NAME | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
