Item Search

Name	Audit Name	Plugin	Category
1.2.4.2.2.19 Set 'Configure TPM startup:' to 'Do not allow TPM'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.3.5 Set 'Recovery Password' to 'Do not allow 48-digit recovery password'	CIS Windows 8 L1 v1.0.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
1.2.4.2.3.13 Set 'Save BitLocker recovery information to AD DS for removable data drives' to 'False'	CIS Windows 8 L1 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.14.1 - EFS - implementation (AIX 6.1 only) - 'CLiC kernel extension has loaded'	CIS AIX 5.3/6.1 L2 v1.1.0	Unix	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.13 Ensure 'Require additional authentication at startup: Configure TPM startup:' is set to 'Enabled: Do not allow TPM'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.13 Ensure 'Require additional authentication at startup: Configure TPM startup:' is set to 'Enabled: Do not allow TPM'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.2.19 (BL) Ensure 'Require additional authentication at startup: Configure TPM startup:' is set to 'Enabled: Do not allow TPM'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.10 Ensure 'Configure use of passwords for removable data drives' is set to 'Disabled'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	CONTINGENCY PLANNING, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.13 Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.13 Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Windows 7 Workstation Bitlocker v3.2.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.9.11.3.13 Ensure 'Deny write access to removable drives not protected by BitLocker' is set to 'Enabled'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.12 (BL) Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L2 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.12 (BL) Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled' - Enabled	CIS Microsoft Windows 11 Stand-alone v2.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled' - Enabled	CIS Microsoft Windows 11 Stand-alone v2.0.0 L2 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.12 Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled' - Enabled	CIS Microsoft Windows 11 Stand-alone v2.0.0 L1 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.13 (BL) Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'	CIS Microsoft Windows 10 Enterprise v3.0.0 L2 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.1.13 Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'	CIS Microsoft Windows 10 EMS Gateway v2.0.0 L1	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 (BL) Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 (BL) Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 (BL) Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 (BL) Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled' - Enabled	CIS Microsoft Windows 11 Stand-alone v2.0.0 BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled' - Enabled	CIS Microsoft Windows 11 Stand-alone v2.0.0 L2 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.12 Ensure 'Configure use of smart cards on removable data drives' is set to 'Enabled' - Enabled	CIS Microsoft Windows 11 Stand-alone v2.0.0 L1 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.13 (BL) Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'	CIS Microsoft Windows 10 Enterprise v3.0.0 L2 + BL	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
18.10.9.3.13 (BL) Ensure 'Configure use of smart cards on removable data drives: Require use of smart cards on removable data drives' is set to 'Enabled: True'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Allow enhanced PINs for startup	MSCT Windows 11 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Allow enhanced PINs for startup	MSCT Windows 11 v23H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Allow enhanced PINs for startup	MSCT Windows 10 v21H1 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Allow enhanced PINs for startup	MSCT Windows 10 v22H2 v1.0.0	Windows	IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
Allow Secure Boot for integrity validation	MSCT Windows 10 1803 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY
Choose drive encryption method and cipher strength	MSCT Windows 10 v1507 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later) - EncryptionMethodWithXtsFdv	MSCT Windows 10 1809 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later) - EncryptionMethodWithXtsOs	MSCT Windows 10 1809 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later) - EncryptionMethodWithXtsRdv	MSCT Windows 10 1809 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later) - EncryptionMethodWithXtsRdv	MSCT Windows 10 1803 v1.0.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyCrossOrg	MSCT Windows 11 v22H2 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyCrossOrg	MSCT Windows 11 v23H2 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 11 v23H2 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 v21H1 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 11 v22H2 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 1909 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 v1507 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 v2004 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 v21H2 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 v20H2 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 1803 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 1903 v1.19.9	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION
Deny write access to removable drives not protected by BitLocker - RDVDenyWriteAccess	MSCT Windows 10 1809 v1.0.0	Windows	MEDIA PROTECTION, SYSTEM AND COMMUNICATIONS PROTECTION

Detections

Analytics

Item Search