1.2.2 Ensure that the --basic-auth-file argument is not set - openshift-kube-apiserver | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2.2 Ensure that the --token-auth-file parameter is not set | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2.2 Ensure that the --token-auth-file parameter is not set | CIS Kubernetes Benchmark v1.8.0 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2.3 Ensure that the --DenyServiceExternalIPs is not set | CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2.3 Ensure that the --DenyServiceExternalIPs is not set | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2.3 Ensure that the --token-auth-file parameter is not set - KubeApiServers | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
1.2.3 Ensure that the --token-auth-file parameter is not set - openshift-apiserver | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
2.6.7 Audit Lockdown Mode | CIS Apple macOS 13.0 Ventura v2.0.0 L2 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.3.3 daemon | CIS IBM AIX 7.1 L1 v2.1.0 | Unix | CONFIGURATION MANAGEMENT, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE |
4.5.1 Configure Image Provenance using ImagePolicyWebhook admission controller | CIS Google Kubernetes Engine (GKE) v1.5.0 L2 | GCP | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.4 sshd_config: Restrict users and groups allowed access via OpenSSH | CIS IBM AIX 7.2 L2 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.5 sshd_config: PermitRootLogin is 'prohibit-password' or 'no' | CIS IBM AIX 7.2 L2 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.6 sshd_config: Banner exists and message contains 'Only authorized users allowed' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.7 sshd_config: HostbasedAuthentication is 'no' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.8 sshd_config: IgnoreRhosts is 'yes' or 'shosts-only' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.9 sshd_config: PermitEmptyPasswords is 'no' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.10 sshd_config: LogLevel is 'INFO' or 'VERBOSE' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.11 sshd_config: sftp-server arguments include '-u 027 -f AUTH -l INFO' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.12 sshd_config: MaxAuthTries is '4' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.13 sshd_config: PermitUserEnvironment is 'no' | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.14 sshd_config: Use Conditional exception(s). | CIS IBM AIX 7.2 L2 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
4.5.3.16 sshd_config, ssh_config: Ciphers | CIS IBM AIX 7.2 L1 v1.0.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.10 Ensure no users have .netrc files | CIS SUSE Linux Enterprise Workstation 12 L1 v3.1.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.10 Ensure no users have .netrc files | CIS SUSE Linux Enterprise 15 Server L1 v1.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.10 Ensure no users have .netrc files | CIS SUSE Linux Enterprise 15 Workstation L1 v1.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.16 Ensure no users have .netrc files | CIS CentOS 7 v3.1.2 Server L1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.16 Ensure no users have .netrc files | CIS Oracle Linux 7 Workstation L1 v3.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.16 Ensure no users have .netrc files | CIS Amazon Linux 2 v2.0.0 L1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.16 Ensure no users have .netrc files | CIS CentOS 7 v3.1.2 Workstation L1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.16 Ensure no users have .netrc files | CIS Oracle Linux 7 Server L1 v3.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
6.2.16 Ensure no users have .netrc files | CIS Red Hat EL7 Server L1 v3.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
8.3.3 Ensure secure protocols are used for virtual serial port access | CIS VMware ESXi 6.7 v1.3.0 Level 1 | VMware | CONFIGURATION MANAGEMENT, MAINTENANCE |
8.3.3 Ensure secure protocols are used for virtual serial port access | CIS VMware ESXi 7.0 v1.3.0 Level 1 | VMware | CONFIGURATION MANAGEMENT, MAINTENANCE |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Configure the System to Separate User and System Functionality - separate | NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Big Sur - Verify remote disconnection of sessions | NIST macOS Big Sur v1.4.0 - All Profiles | Unix | MAINTENANCE |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Configure the System to Separate User and System Functionality - separate | NIST macOS Catalina v1.5.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Catalina - Verify remote disconnection of sessions | NIST macOS Catalina v1.5.0 - All Profiles | Unix | MAINTENANCE |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r4 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r4 Moderate | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-53r5 High | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - 800-171 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Configure the System to Separate User and System Functionality - separate | NIST macOS Monterey v1.0.0 - CNSSI 1253 | Unix | MAINTENANCE, SYSTEM AND COMMUNICATIONS PROTECTION |
Monterey - Verify remote disconnection of sessions | NIST macOS Monterey v1.0.0 - All Profiles | Unix | MAINTENANCE |