Item Search

NameAudit NamePluginCategory
AOSX-13-000430 - The macOS system must have the security assessment policy subsystem enabled.DISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

AOSX-13-000710 - The macOS system must allow only applications that have a valid digital signature to run - AllowIdentifiedDevelopersDISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

AOSX-13-000710 - The macOS system must allow only applications that have a valid digital signature to run - EnableAssessmentDISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

AOSX-13-000710 - The macOS system must allow only applications that have a valid digital signature to run - SPApplicationsDataTypeDISA STIG Apple Mac OSX 10.13 v2r5Unix

CONFIGURATION MANAGEMENT

APPL-11-002064 - The macOS system must have the security assessment policy subsystem enabled.DISA STIG Apple macOS 11 v1r5Unix

CONFIGURATION MANAGEMENT

APPL-11-002064 - The macOS system must have the security assessment policy subsystem enabled.DISA STIG Apple macOS 11 v1r6Unix

CONFIGURATION MANAGEMENT

APPL-12-002064 - The macOS system must have the security assessment policy subsystem enabled.DISA STIG Apple macOS 12 v1r4Unix

CONFIGURATION MANAGEMENT

AS24-U1-000230 - Expansion modules must be fully reviewed, tested, and signed before they can exist on a production Apache web server.DISA STIG Apache Server 2.4 Unix Server v2r5Unix

CONFIGURATION MANAGEMENT

DKER-EE-001770 - Docker Incs official GPG key must be added to the host using the users operating systems respective package repository management tooling.DISA STIG Docker Enterprise 2.x Linux/Unix v2r1Unix

CONFIGURATION MANAGEMENT

DTAVSEL-201 - The McAfee VirusScan Enterprise for Linux 1.9.x/2.0.x must be configured to receive all patches, service packs and updates from a DoD-managed source.McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Managed Client v1r5Unix

CONFIGURATION MANAGEMENT

DTAVSEL-201 - The McAfee VirusScan Enterprise must be configured to receive all patches, service packs and updates from a DoD-managed source.McAfee Virus Scan Enterprise for Linux 1.9x/2.0x Local Client v1r6Unix

CONFIGURATION MANAGEMENT

DTBI370-IE11 - Checking for signatures on downloaded programs must be enforced.DISA STIG IE 11 v2r2Windows

CONFIGURATION MANAGEMENT

DTOO413 - Users must be prevented from using or inserting apps that come from the Office Store.DISA STIG Microsoft Office System 2013 v2r1Windows

CONFIGURATION MANAGEMENT

ESXI-06-000047 - The Image Profile and VIB Acceptance Levels must be verified.DISA STIG VMware vSphere 6.x ESXi OS v1r5Unix

CONFIGURATION MANAGEMENT

ESXI-65-000047 - The ESXi Image Profile and VIB Acceptance Levels must be verified.DISA STIG VMware vSphere ESXi OS 6.5 v2r3Unix

CONFIGURATION MANAGEMENT

EX13-CA-000090 - Exchange Local machine policy must require signed scripts.DISA Microsoft Exchange 2013 Client Access Server STIG v2r1Windows

CONFIGURATION MANAGEMENT

EX13-EG-000075 - The Exchange local machine policy must require signed scripts.DISA Microsoft Exchange 2013 Edge Transport Server STIG v1r5Windows

CONFIGURATION MANAGEMENT

FGFW-ND-000305 - The FortiGate device must only install patches or updates that are validated by the vendor via digital signature or hash.DISA Fortigate Firewall NDM STIG v1r1FortiGate

CONFIGURATION MANAGEMENT

GEN008800 - The system package management tool must cryptographically verify the authenticity of software packages during installation.DISA STIG Solaris 10 X86 v2r2Unix

CONFIGURATION MANAGEMENT

GEN008800 - The system package management tool must cryptographically verify the authenticity of software packages during installation.DISA STIG Solaris 10 SPARC v2r2Unix

CONFIGURATION MANAGEMENT

O365-EX-000028 - Trust Bar notification must be enabled for unsigned application add-ins in Excel and blocked.DISA STIG Microsoft Office 365 ProPlus v2r5Windows

CONFIGURATION MANAGEMENT

O365-PR-000002 - Project must automatically disable unsigned add-ins without informing users.DISA STIG Microsoft Office 365 ProPlus v2r5Windows

CONFIGURATION MANAGEMENT

O365-PU-000002 - Publisher must automatically disable unsigned add-ins without informing users.DISA STIG Microsoft Office 365 ProPlus v2r5Windows

CONFIGURATION MANAGEMENT

O365-PU-000003 - Publisher must disable all unsigned VBA macros.DISA STIG Microsoft Office 365 ProPlus v2r5Windows

CONFIGURATION MANAGEMENT

OL08-00-010370 - YUM must be configured to prevent the installation of patches, service packs, device drivers, or OL 8 system components that have not been digitally signed using a certificate that is recognized and approved by the organization.DISA Oracle Linux 8 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL08-00-010371 - OL 8 must prevent the installation of software, patches, service packs, device drivers, or operating system components of local packages without verification they have been digitally signed using a certificate that is issued by a Certificate Authority (CA) that is recognized and approved by the organization.DISA Oracle Linux 8 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL08-00-010372 - OL 8 must prevent the loading of a new kernel for later execution - configuration filesDISA Oracle Linux 8 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL08-00-010372 - OL 8 must prevent the loading of a new kernel for later execution - multiple filesDISA Oracle Linux 8 STIG v1r2Unix

CONFIGURATION MANAGEMENT

OL08-00-010372 - OL 8 must prevent the loading of a new kernel for later execution - sysctlDISA Oracle Linux 8 STIG v1r2Unix

CONFIGURATION MANAGEMENT

PHTN-67-000062 - The Photon operating system RPM package management tool must cryptographically verify the authenticity of all software packages during installation.DISA STIG VMware vSphere 6.7 Photon OS v1r3Unix

CONFIGURATION MANAGEMENT

PHTN-67-000063 - The Photon operating system RPM package management tool must cryptographically verify the authenticity of all software packages during installation.DISA STIG VMware vSphere 6.7 Photon OS v1r3Unix

CONFIGURATION MANAGEMENT

PHTN-67-000064 - The Photon operating system RPM package management tool must cryptographically verify the authenticity of all software packages during installation.DISA STIG VMware vSphere 6.7 Photon OS v1r3Unix

CONFIGURATION MANAGEMENT

RHEL-06-000013 - The system package management tool must cryptographically verify the authenticity of system software packages during installation.DISA Red Hat Enterprise Linux 6 STIG v2r2Unix

CONFIGURATION MANAGEMENT

RHEL-08-010370 - RHEL 8 must prevent the installation of software, patches, service packs, device drivers, or operating system components from a repository without verification they have been digitally signed using a certificate that is issued by a Certificate Authority (CA) that is recognized and approved by the organization.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

CONFIGURATION MANAGEMENT

RHEL-08-010371 - RHEL 8 must prevent the installation of software, patches, service packs, device drivers, or operating system components of local packages without verification they have been digitally signed using a certificate that is issued by a Certificate Authority (CA) that is recognized and approved by the organization.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix

CONFIGURATION MANAGEMENT

RHEL-08-010372 - RHEL 8 must prevent the loading of a new kernel for later execution - conf filesDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

CONFIGURATION MANAGEMENT

RHEL-08-010372 - RHEL 8 must prevent the loading of a new kernel for later execution - sysctlDISA Red Hat Enterprise Linux 8 STIG v1r7Unix

CONFIGURATION MANAGEMENT

SLES-15-010430 - The SUSE operating system tool zypper must have gpgcheck enabled.DISA SLES 15 STIG v1r6Unix

CONFIGURATION MANAGEMENT

UBTU-18-010016 - Advance package Tool (APT) must be configured to prevent the installation of patches, service packs, device drivers, or Ubuntu operating system components without verification they have been digitally signed using a certificate that is recognized and approved by the organization.DISA STIG Ubuntu 18.04 LTS v2r8Unix

CONFIGURATION MANAGEMENT

UBTU-20-010438 - The Ubuntu operating system's Advance Package Tool (APT) must be configured to prevent the installation of patches, service packs, device drivers, or Ubuntu operating system components without verification they have been digitally signed using a certificate that is recognized and approved by the organization.DISA STIG Ubuntu 20.04 LTS v1r5Unix

CONFIGURATION MANAGEMENT

VCEM-67-000008 - ESX Agent Manager application files must be verified for their integrity.DISA STIG VMware vSphere 6.7 EAM Tomcat v1r2Unix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

VCEM-67-000009 - ESX Agent Manager must only run one webapp.DISA STIG VMware vSphere 6.7 EAM Tomcat v1r2Unix

CONFIGURATION MANAGEMENT

VCFL-67-000012 - vSphere Client application files must be verified for their integrity.DISA STIG VMware vSphere 6.7 Virgo Client v1r1Unix

CONFIGURATION MANAGEMENT

VCLD-67-000015 - VAMI server binaries and libraries must be verified for their integrity.DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r2Unix

CONFIGURATION MANAGEMENT

VCPF-67-000008 - Performance Charts application files must be verified for their integrity.DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r2Unix

CONFIGURATION MANAGEMENT

VCPF-67-000009 - Performance Charts must only run one web app.DISA STIG VMware vSphere 6.7 Perfcharts Tomcat v1r2Unix

CONFIGURATION MANAGEMENT

VCST-67-000008 - The Security Token Service application files must be verified for their integrity.DISA STIG VMware vSphere 6.7 STS Tomcat v1r2Unix

AUDIT AND ACCOUNTABILITY, CONFIGURATION MANAGEMENT

VCST-67-000009 - The Security Token Service must only run one web app.DISA STIG VMware vSphere 6.7 STS Tomcat v1r2Unix

CONFIGURATION MANAGEMENT

VCUI-67-000008 - vSphere UI application files must be verified for their integrity.DISA STIG VMware vSphere 6.7 UI Tomcat v1r2Unix

CONFIGURATION MANAGEMENT

VCUI-67-000009 - vSphere UI plugins must be authorized before use.DISA STIG VMware vSphere 6.7 UI Tomcat v1r2Unix

CONFIGURATION MANAGEMENT