Item Search

NameAudit NamePluginCategory
APPL-11-001002 - The macOS system must monitor remote access methods and generate audit records when successful/unsuccessful attempts to access/modify privileges occur.DISA STIG Apple macOS 11 v1r5Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

APPL-11-001002 - The macOS system must monitor remote access methods and generate audit records when successful/unsuccessful attempts to access/modify privileges occur.DISA STIG Apple macOS 11 v1r6Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

APPL-12-001002 - The macOS system must monitor remote access methods and generate audit records when successful/unsuccessful attempts to access/modify privileges occur.DISA STIG Apple macOS 12 v1r4Unix

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

CASA-FW-000030 - The Cisco ASA must be configured to restrict VPN traffic according to organization-defined filtering rules - VPN Group PolicyDISA STIG Cisco ASA FW v1r2Cisco

ACCESS CONTROL

CASA-FW-000030 - The Cisco ASA must be configured to restrict VPN traffic according to organization-defined filtering rules - VPN RulesDISA STIG Cisco ASA FW v1r2Cisco

ACCESS CONTROL

ESXI-06-000004 - Remote logging for ESXi hosts must be configured.DISA STIG VMware vSphere 6.x ESXi v1r5VMware

ACCESS CONTROL

ESXI-67-000004 - Remote logging for ESXi hosts must be configured.DISA STIG VMware vSphere 6.7 ESXi v1r2VMware

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

F5BI-AS-000031 - The BIG-IP ASM module supporting intermediary services for remote access communications traffic must ensure inbound traffic is monitored for compliance with remote access security policies.DISA F5 BIG-IP Application Security Manager 11.x STIG v1r1F5

ACCESS CONTROL

FNFG-FW-000015 - The FortiGate firewall must use organization-defined filtering rules that apply to the monitoring of remote access traffic for the traffic from the VPN access points.DISA Fortigate Firewall STIG v1r1FortiGate

ACCESS CONTROL

OH12-1X-000019 - OHS must have the LoadModule log_config_module directive enabled to generate information to be used by external applications or entities to monitor and control remote access.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

ACCESS CONTROL

OH12-1X-000020 - OHS must have the OraLogMode set to Oracle Diagnostic Logging text mode to generate information to be used by external applications or entities to monitor and control remote access.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

ACCESS CONTROL

OH12-1X-000022 - OHS must have the OraLogSeverity directive defined to generate adequate information to be used by external applications or entities to monitor and control remote access.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

ACCESS CONTROL

OH12-1X-000024 - OHS must have a log format defined to generate adequate information to be used by external applications or entities to monitor and control remote access.DISA STIG Oracle HTTP Server 12.1.3 v2r1Unix

ACCESS CONTROL

OL08-00-010070 - All OL 8 remote access methods must be monitored - authDISA Oracle Linux 8 STIG v1r2Unix

ACCESS CONTROL

OL08-00-010070 - All OL 8 remote access methods must be monitored - authprivDISA Oracle Linux 8 STIG v1r2Unix

ACCESS CONTROL

OL08-00-010070 - All OL 8 remote access methods must be monitored - daemonDISA Oracle Linux 8 STIG v1r2Unix

ACCESS CONTROL

PHTN-67-000006 - The Photon operating system must have the sshd SyslogFacility set to 'authpriv' - authpriv.DISA STIG VMware vSphere 6.7 Photon OS v1r3Unix

ACCESS CONTROL

PHTN-67-000007 - The Photon operating system must have sshd authentication logging enabled.DISA STIG VMware vSphere 6.7 Photon OS v1r3Unix

ACCESS CONTROL

PHTN-67-000008 - The Photon operating system must have the sshd LogLevel set to 'INFO' - INFO.DISA STIG VMware vSphere 6.7 Photon OS v1r3Unix

ACCESS CONTROL

RHEL-08-010070 - All RHEL 8 remote access methods must be monitored - authDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

ACCESS CONTROL

RHEL-08-010070 - All RHEL 8 remote access methods must be monitored - authprivDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

ACCESS CONTROL

RHEL-08-010070 - All RHEL 8 remote access methods must be monitored - daemonDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

ACCESS CONTROL

SLES-15-010150 - The SUSE operating system must log SSH connection attempts and failures to the server - LogLevelDISA SLES 15 STIG v1r6Unix

ACCESS CONTROL

SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getnaflags loDISA STIG Solaris 11 SPARC v2r6Unix

ACCESS CONTROL

SOL-11.1-010310 - The audit system must be configured to audit login, logout, and session initiation - getpolicyDISA STIG Solaris 11 SPARC v2r6Unix

ACCESS CONTROL

SP13-00-000025 - SharePoint must ensure remote sessions for accessing security functions and security-relevant information are audited.DISA STIG SharePoint 2013 v2r3Windows

ACCESS CONTROL

SYMP-AG-000010 - If Symantec ProxySG filters externally initiated traffic, reverse proxy services must be configured.DISA Symantec ProxySG Benchmark ALG v1r3BlueCoat

ACCESS CONTROL

SYMP-AG-000020 - Symantec ProxySG providing intermediary services for remote access communications traffic must ensure outbound traffic is monitored for compliance with remote access security policies.DISA Symantec ProxySG Benchmark ALG v1r3BlueCoat

ACCESS CONTROL

UBTU-16-030450 - All remote access methods must be monitored - authDISA STIG Ubuntu 16.04 LTS v2r3Unix

ACCESS CONTROL

UBTU-18-010410 - The Ubuntu operating system must monitor remote access methods - authprivDISA STIG Ubuntu 18.04 LTS v2r8Unix

ACCESS CONTROL

UBTU-18-010410 - The Ubuntu operating system must monitor remote access methods - daemon.noticeDISA STIG Ubuntu 18.04 LTS v2r8Unix

ACCESS CONTROL

UBTU-20-010403 - The Ubuntu operating system must monitor remote access methods - authDISA STIG Ubuntu 20.04 LTS v1r5Unix

ACCESS CONTROL

UBTU-20-010403 - The Ubuntu operating system must monitor remote access methods - authprivDISA STIG Ubuntu 20.04 LTS v1r5Unix

ACCESS CONTROL

UBTU-20-010403 - The Ubuntu operating system must monitor remote access methods - daemonDISA STIG Ubuntu 20.04 LTS v1r5Unix

ACCESS CONTROL

VCRP-67-000005 - The rhttpproxy must produce log records containing sufficient information to establish the source of events.DISA STIG VMware vSphere 6.7 RhttpProxy v1r2Unix

ACCESS CONTROL

WBLC-01-000011 - Oracle WebLogic must employ automated mechanisms to facilitate the monitoring and control of remote access methods.Oracle WebLogic Server 12c Linux v2r1 MiddlewareUnix

ACCESS CONTROL

WBLC-01-000013 - Oracle WebLogic must ensure remote sessions for accessing security functions and security-relevant information are audited.Oracle WebLogic Server 12c Linux v2r1Unix

ACCESS CONTROL

WBLC-01-000013 - Oracle WebLogic must ensure remote sessions for accessing security functions and security-relevant information are audited.Oracle WebLogic Server 12c Windows v2r1Windows

ACCESS CONTROL

WBSP-AS-000080 - WebSphere Application Server groups mapped to WebSphere auditor roles must be configured in accordance with security planDISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows

ACCESS CONTROL

WBSP-AS-000080 - WebSphere Application Server groups mapped to WebSphere auditor roles must be configured in accordance with security planDISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareUnix

ACCESS CONTROL

WBSP-AS-000120 - The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes - depthDISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareUnix

ACCESS CONTROL

WBSP-AS-000120 - The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes - depthDISA IBM WebSphere Traditional 9 STIG v1r1Unix

ACCESS CONTROL

WBSP-AS-000120 - The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes - depthDISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows

ACCESS CONTROL

WBSP-AS-000120 - The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes - enabledDISA IBM WebSphere Traditional 9 STIG v1r1 MiddlewareUnix

ACCESS CONTROL

WBSP-AS-000120 - The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes - enabledDISA IBM WebSphere Traditional 9 STIG v1r1Unix

ACCESS CONTROL

WBSP-AS-000120 - The WebSphere Application Server automatic repository checkpoints must be enabled to track configuration changes - enabledDISA IBM WebSphere Traditional 9 Windows STIG v1r1Windows

ACCESS CONTROL

WN11-AU-000065 - The system must be configured to audit Logon/Logoff - Logoff successes.DISA Windows 11 STIG v1r1Windows

ACCESS CONTROL

WN22-AU-000190 - Windows Server 2022 must be configured to audit logon successes.DISA Windows Server 2022 STIG v1r1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

WN22-AU-000200 - Windows Server 2022 must be configured to audit logon failures.DISA Windows Server 2022 STIG v1r1Windows

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY

WNFWA-000100 - Inbound exceptions to the firewall on domain workstations must only allow authorized remote management hosts.DISA Microsoft Windows Firewall v2r1Windows

ACCESS CONTROL