Item Search

NameAudit NamePluginCategory
1.1.8 Enable Azure AD Identity Protection sign-in risk policiesCIS Microsoft 365 Foundations E5 L2 v1.4.0microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.2 Ensure that multi-factor authentication is enabled for all non-privileged users - List UsersCIS Microsoft Azure Foundations v1.3.1 L2microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.2 Ensure that multi-factor authentication is enabled for all non-privileged users - Role AssignmentsCIS Microsoft Azure Foundations v1.3.1 L2microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.2 Ensure that multi-factor authentication is enabled for all non-privileged users - Role DefinitionsCIS Microsoft Azure Foundations v1.3.1 L2microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.3 Ensure modern authentication for Skype for Business Online is enabledCIS Microsoft 365 Foundations E3 L1 v1.4.0microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.4 Ensure modern authentication for SharePoint applications is requiredCIS Microsoft 365 Foundations E3 L1 v1.4.0microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.5 Ensure that 'Number of methods required to reset' is set to '2'CIS Microsoft Azure Foundations v1.3.1 L1microsoft_azure

IDENTIFICATION AND AUTHENTICATION

1.10 Ensure required packages for multifactor authentication are installed - pam_pkcs11CIS Amazon Linux 2 STIG v1.0.0 L3Unix

IDENTIFICATION AND AUTHENTICATION

1.20 Ensure that 'Require Multi-Factor Auth to join devices' is set to 'Yes'CIS Microsoft Azure Foundations v1.3.1 L1microsoft_azure

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 5 L1 OS Windows v1.1.0Windows

IDENTIFICATION AND AUTHENTICATION

2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionCIS MongoDB 4 L1 OS Linux v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

5.1.11 Ensure SSH PermitEmptyPasswords is disabledCIS Google Container-Optimized OS L1 Server v1.0.0Unix

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v1.12.0 L2 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v1.12.0 BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v1.0.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.13 Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise v1.12.0 L2 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.13 Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'CIS Microsoft Windows 11 Enterprise v1.0.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.13 Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.1.13 Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v1.0.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'CIS Microsoft Windows 11 Enterprise v1.0.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.13 Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise v1.12.0 L2 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.13 Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'CIS Microsoft Windows 11 Enterprise v1.0.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.13 Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'CIS Microsoft Windows 11 Enterprise v1.0.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.13 Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BLWindows

IDENTIFICATION AND AUTHENTICATION

18.9.11.3.13 Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BL + NGWindows

IDENTIFICATION AND AUTHENTICATION

18.9.17.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'CIS Microsoft Windows Server 2019 DC L1 v1.3.0Windows

IDENTIFICATION AND AUTHENTICATION

18.9.17.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'CIS Microsoft Windows Server 2019 MS L1 v1.3.0Windows

IDENTIFICATION AND AUTHENTICATION

18.9.17.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'CIS Microsoft Windows Server 2022 v1.0.0 L1 MSWindows

IDENTIFICATION AND AUTHENTICATION

18.9.17.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'CIS Microsoft Windows Server 2022 v1.0.0 L1 DCWindows

IDENTIFICATION AND AUTHENTICATION

20.11 Ensure 'Active Directory user accounts are configured to require the use of a Common Access Card (CAC), Personal Identity Verification (PIV)-compliant hardware token, or Alternate Logon Token (ALT) for user authentication.' (STIG DC only)CIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0Windows

IDENTIFICATION AND AUTHENTICATION

Big Sur - Disable Password Authentication for SSHNIST macOS Big Sur v1.4.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Catalina - Disable Password Authentication for SSHNIST macOS Catalina v1.5.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-171Unix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r4 LowUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r5 ModerateUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r4 HighUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r4 ModerateUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - CNSSI 1253Unix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r5 LowUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - 800-53r5 HighUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Disable Password Authentication for SSHNIST macOS Monterey v1.0.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION, MAINTENANCE

Monterey - Enforce Smartcard AuthenticationNIST macOS Monterey v1.0.0 - 800-171Unix

IDENTIFICATION AND AUTHENTICATION

Monterey - Enforce Smartcard AuthenticationNIST macOS Monterey v1.0.0 - 800-53r4 LowUnix

IDENTIFICATION AND AUTHENTICATION

Monterey - Enforce Smartcard AuthenticationNIST macOS Monterey v1.0.0 - 800-53r5 ModerateUnix

IDENTIFICATION AND AUTHENTICATION

Monterey - Enforce Smartcard AuthenticationNIST macOS Monterey v1.0.0 - All ProfilesUnix

IDENTIFICATION AND AUTHENTICATION