Item Search

NameAudit NamePluginCategory
3.125 - Audit policy using subcategories is enabled.DISA Windows Vista STIG v6r41Windows

AUDIT AND ACCOUNTABILITY

GEN002660 - Auditing must be implemented.DISA STIG AIX 5.3 v1r2Unix

AUDIT AND ACCOUNTABILITY

GOOG-10-006100 - Google Android 10 must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Google Android 10.x v1r2MDM

AUDIT AND ACCOUNTABILITY

GOOG-11-006100 - Google Android 11 must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Google Android 11 COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

GOOG-11-006100 - Google Android 11 must be configured to generate audit records for the following auditable events: detected integrity violations.AirWatch - DISA Google Android 11 COPE v1r1MDM

AUDIT AND ACCOUNTABILITY

GOOG-11-006100 - Google Android 11 must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Google Android 11 COPE v1r1MDM

AUDIT AND ACCOUNTABILITY

GOOG-12-007800 - Google Android 12 must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Google Android 12 COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

GOOG-12-007800 - Google Android 12 must be configured to generate audit records for the following auditable events: detected integrity violations.AirWatch - DISA Google Android 12 COPE v1r1MDM

AUDIT AND ACCOUNTABILITY

GOOG-12-007800 - Google Android 12 must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Google Android 12 COPE v1r1MDM

AUDIT AND ACCOUNTABILITY

HONW-09-006100 - The Honeywell Mobility Edge Android Pie device must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Honeywell Android 9.x COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

MOTO-09-006100 - The Motorola Android Pie must be configured to generate audit records for the following auditable events: detected integrity violations.AirWatch - DISA Motorola Android Pie.x COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

MOTO-09-006100 - The Motorola Android Pie must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Motorola Android Pie.x COPE v1r1MDM

AUDIT AND ACCOUNTABILITY

MOTS-11-006100 - Motorola Solutions Android 11 must be configured to generate audit records for the following auditable events: Detected integrity violations.AirWatch - DISA Motorola Solutions Android 11 COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

OL08-00-030313 - OL 8 must generate audit records for any use of the 'semanage' command - semanage command.DISA Oracle Linux 8 STIG v1r2Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030130 - RHEL 8 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/shadow.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030140 - RHEL 8 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/security/opasswd.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030150 - RHEL 8 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/passwd.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030170 - RHEL 8 must generate audit records for all account creations, modifications, disabling, and termination events that affect /etc/group.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030180 - The RHEL 8 audit package must be installed.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030181 - RHEL 8 audit records must contain information to establish what type of events occurred, the source of events, where events occurred, and the outcome of events.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030190 - Successful/unsuccessful uses of the su command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030200 - The RHEL 8 audit system must be configured to audit any usage of the setxattr, fsetxattr, lsetxattr, removexattr, fremovexattr, and lremovexattr system calls - b32 auid>=1000DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030200 - The RHEL 8 audit system must be configured to audit any usage of the setxattr, fsetxattr, lsetxattr, removexattr, fremovexattr, and lremovexattr system calls - b64 auid=0DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030250 - Successful/unsuccessful uses of the chage command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030290 - Successful/unsuccessful uses of the passwd command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030302 - Successful/unsuccessful uses of the mount syscall in RHEL 8 must generate an audit record - b64DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030302 - Successful/unsuccessful uses of the mount syscall in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030312 - Successful/unsuccessful uses of postqueue in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030315 - Successful/unsuccessful uses of userhelper in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030320 - Successful/unsuccessful uses of the ssh-keysign in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030330 - Successful/unsuccessful uses of the setfacl command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030360 - Successful/unsuccessful uses of the init_module and finit_module system calls in RHEL 8 must generate an audit record - b64DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030361 - Successful/unsuccessful uses of the rename, unlink, rmdir, renameat, and unlinkat system calls in RHEL 8 must generate an audit record - b32DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030390 - Successful/unsuccessful uses of the delete_module command in RHEL 8 must generate an audit record - b32DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030400 - Successful/unsuccessful uses of the crontab command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030420 - Successful/unsuccessful uses of the truncate, ftruncate, creat, open, openat, and open_by_handle_at system calls in RHEL 8 must generate an audit record - b32 EPERMDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030490 - Successful/unsuccessful uses of the chmod, fchmod, and fchmodat system calls in RHEL 8 must generate an audit record - b32DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030570 - Successful/unsuccessful uses of the chacl command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030580 - Successful/unsuccessful uses of the kmod command in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030600 - Successful/unsuccessful modifications to the lastlog file in RHEL 8 must generate an audit record.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

RHEL-08-030601 - RHEL 8 must enable auditing of processes that start prior to the audit daemon - /etc/default/grubDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

AUDIT AND ACCOUNTABILITY

SYMP-NM-000070 - Symantec ProxySG must enable event access logging.DISA Symantec ProxySG Benchmark NDM v1r2BlueCoat

AUDIT AND ACCOUNTABILITY

VCEM-67-000006 - ESX Agent Manager must generate log records for system startup and shutdown.DISA STIG VMware vSphere 6.7 EAM Tomcat v1r2Unix

AUDIT AND ACCOUNTABILITY

VCPG-67-000002 - VMware Postgres log files must contain required fields.DISA STIG VMware vSphere 6.7 PostgreSQL v1r1Unix

AUDIT AND ACCOUNTABILITY

VCST-67-000006 - The Security Token Service must generate log records during Java startup and shutdown - levelDISA STIG VMware vSphere 6.7 STS Tomcat v1r2Unix

AUDIT AND ACCOUNTABILITY

VCST-67-000006 - The Security Token Service must generate log records during Java startup and shutdown - prefixDISA STIG VMware vSphere 6.7 STS Tomcat v1r2Unix

AUDIT AND ACCOUNTABILITY

WN11-SO-000030 - Audit policy using subcategories must be enabled.DISA Windows 11 STIG v1r1Windows

AUDIT AND ACCOUNTABILITY

ZEBR-10-006100 - Zebra Android 10 must be configured to generate audit records for the following auditable events: detected integrity violations.AirWatch - DISA Zebra Android 10 COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

ZEBR-10-006100 - Zebra Android 10 must be configured to generate audit records for the following auditable events: detected integrity violations.MobileIron - DISA Zebra Android 10 COBO v1r1MDM

AUDIT AND ACCOUNTABILITY

ZEBR-10-006100 - Zebra Android 10 must be configured to generate audit records for the following auditable events: detected integrity violations.AirWatch - DISA Zebra Android 10 COPE v1r1MDM

AUDIT AND ACCOUNTABILITY