Item Search

Name	Audit Name	Plugin	Category
1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'	CIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0	Windows	ACCESS CONTROL
1.1.7 Set 'aaa accounting connection' - aaa accounting connection	CIS Cisco IOS 16 L2 v2.0.0	Cisco	ACCESS CONTROL
2.2 Ensure redundant remote authentication servers are configured	CIS F5 Networks v1.0.0 L2	F5	ACCESS CONTROL
2.2.6 Ensure 'REMOTE_LOGIN_PASSWORDFILE' Is Set to 'NONE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
2.3.1.1 Ensure 'Accounts: Block Microsoft accounts' is set to 'Blocked'	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL	Windows	ACCESS CONTROL
2.3.1.2 Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0	Windows	ACCESS CONTROL
2.3.1.2 Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2019 MS Standalone L1 v1.0.0	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0	Windows	ACCESS CONTROL
2.3.11.3 Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.0	Windows	ACCESS CONTROL
2.3.11.3 Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0	Windows	ACCESS CONTROL
2.3.11.6 Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.11.6 Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.11.6 Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0	Windows	ACCESS CONTROL
2.8 Ensure vSphere Authentication Proxy is used when adding hosts to Active Directory	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	ACCESS CONTROL
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2022 Database L1 AWS RDS v1.0.0	MS_SQLDB	ACCESS CONTROL
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2019 Database L1 AWS RDS v1.3.0	MS_SQLDB	ACCESS CONTROL
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2017 Database L1 DB v1.3.0	MS_SQLDB	ACCESS CONTROL
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2016 Database L1 DB v1.4.0	MS_SQLDB	ACCESS CONTROL
3.10 Use Identity Aware Proxy (IAP) to Ensure Only Traffic From Google IP Addresses are 'Allowed'	CIS Google Cloud Platform v3.0.0 L2	GCP	ACCESS CONTROL
3.11.3.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	ACCESS CONTROL
3.20 (L1) Host must enable normal lockdown mode	CIS VMware ESXi 8.0 v1.1.0 L1	VMware	ACCESS CONTROL
3.21 (L2) Host should enable strict lockdown mode	CIS VMware ESXi 8.0 v1.1.0 L2	VMware	ACCESS CONTROL
4.1.4 Ensure that Microsoft Entra authentication is Configured for SQL Servers	CIS Microsoft Azure Foundations v2.1.0 L1	microsoft_azure	ACCESS CONTROL
4.5 Ensure Active Directory is used for local user authentication	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	ACCESS CONTROL
5.6 Ensure Lockdown mode is enabled	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	ACCESS CONTROL
6.2.2 Ensure no legacy '+' entries exist in /etc/passwd - + entries exist in /etc/passwd	CIS Google Container-Optimized OS L1 Server v1.1.0	Unix	ACCESS CONTROL
6.2.3 Ensure no legacy '+' entries exist in /etc/shadow - + entries exist in /etc/shadow	CIS Google Container-Optimized OS L1 Server v1.1.0	Unix	ACCESS CONTROL
6.2.4 Ensure no legacy '+' entries exist in /etc/group - + entries exist in /etc/group	CIS Google Container-Optimized OS L1 Server v1.1.0	Unix	ACCESS CONTROL
9.4 Ensure that Register with Entra ID is enabled on App Service	CIS Microsoft Azure Foundations v2.1.0 L1	microsoft_azure	ACCESS CONTROL
18.9.6.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0	Windows	ACCESS CONTROL
18.9.6.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0	Windows	ACCESS CONTROL
18.9.6.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.5.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + NG	Windows	ACCESS CONTROL
18.10.5.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL + NG	Windows	ACCESS CONTROL
18.10.5.1 Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled' - Enabled	CIS Microsoft Windows Server 2019 MS Standalone L1 v1.0.0	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.42.1 Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows 10 EMS Gateway v2.0.0 L1	Windows	ACCESS CONTROL
18.10.42.1 Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.42.1 Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v2.0.0 L1 + BL + NG	Windows	ACCESS CONTROL

Detections

Analytics

Item Search