APPL-12-002069 - The macOS system must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA STIG Apple macOS 12 v1r8 | Unix | ACCESS CONTROL |
APPL-13-002069 - The macOS system must prevent nonprivileged users from executing privileged functions to include disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA STIG Apple macOS 13 v1r3 | Unix | ACCESS CONTROL |
GOOG-12-012200 - Google Android 12 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)]. | MobileIron - DISA Google Android 12 COPE v1r1 | MDM | ACCESS CONTROL |
GOOG-12-012200 - Google Android 12 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)]. | AirWatch - DISA Google Android 12 COPE v1r1 | MDM | ACCESS CONTROL |
GOOG-13-012200 - Google Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB]. | MobileIron - DISA Google Android 13 COPE v1r1 | MDM | ACCESS CONTROL |
GOOG-13-012200 - Google Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB]. | AirWatch - DISA Google Android 13 COPE v1r1 | MDM | ACCESS CONTROL |
GOOG-13-012200 - Google Android 13 must be configured to disable all data signaling over [assignment: list of externally accessible hardware ports (for example, USB)] - for example, USB]. | MobileIron - DISA Google Android 13 COBO v1r1 | MDM | ACCESS CONTROL |
MADB-10-006800 - MariaDB must prevent nonprivileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA MariaDB Enterprise 10.x v1r2 DB | MySQLDB | ACCESS CONTROL |
MSFT-11-005200 - The mobile operating system must allow only the Administrator (MDM) to perform the following management function: Enable/disable location services. | AirWatch - DISA Microsoft Android 11 COPE v1r1 | MDM | ACCESS CONTROL |
OL08-00-040400 - OL 8 must prevent nonprivileged users from executing privileged functions, including disabling, circumventing, or altering implemented security safeguards/countermeasures. | DISA Oracle Linux 8 STIG v1r8 | Unix | ACCESS CONTROL |
WBSP-AS-000240 - The WebSphere Application Server users in a LDAP user registry group must be authorized for that group. | DISA IBM WebSphere Traditional 9 STIG v1r1 | Unix | ACCESS CONTROL |
WN11-RG-000005 - Default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-SO-000167 - Remote calls to the Security Account Manager (SAM) must be restricted to Administrators. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000005 - The 'Access Credential Manager as a trusted caller' user right must not be assigned to any groups or accounts - Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000015 - The 'Act as part of the operating system' user right must not be assigned to any groups or accounts - Act as part of the operating system user right must not be assigned to any groups or accounts. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000030 - The 'Back up files and directories' user right must only be assigned to the Administrators group - Back up files and directories user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000035 - The 'Change the system time' user right must only be assigned to Administrators and Local Service - Change the system time user right must only be assigned to Administrators and Local Service and NT SERVICE\autotimesvc. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000040 - The 'Create a pagefile' user right must only be assigned to the Administrators group - Create a pagefile user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000045 - The 'Create a token object' user right must not be assigned to any groups or accounts - Create a token object user right must not be assigned to any groups or accounts. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000050 - The 'Create global objects' user right must only be assigned to Administrators, Service, Local Service, and Network Service - Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000055 - The 'Create permanent shared objects' user right must not be assigned to any groups or accounts - Create permanent shared objects user right must not be assigned to any groups or accounts. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000060 - The 'Create symbolic links' user right must only be assigned to the Administrators group - Create symbolic links user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000100 - The 'Force shutdown from a remote system' user right must only be assigned to the Administrators group - Force shutdown from a remote system user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000110 - The 'Impersonate a client after authentication' user right must only be assigned to Administrators, Service, Local Service, and Network Service - Impersonate a client after authentication user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000145 - The 'Perform volume maintenance tasks' user right must only be assigned to the Administrators group - Perform volume maintenance tasks user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000160 - The 'Restore files and directories' user right must only be assigned to the Administrators group - Restore files and directories user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN11-UR-000165 - The 'Take ownership of files or other objects' user right must only be assigned to the Administrators group - Take ownership of files or other objects user right must only be assigned to the Administrators group. | DISA Windows 11 STIG v1r5 | Windows | ACCESS CONTROL |
WN22-00-000170 - Windows Server 2022 default permissions for the HKEY_LOCAL_MACHINE registry hive must be maintained | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000010 - Windows Server 2022 must only allow administrators responsible for the domain controller to have Administrator rights on the system. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000080 - Windows Server 2022 Active Directory SYSVOL directory must have the proper access control permissions. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000090 - Windows Server 2022 Active Directory Group Policy objects must have proper access control permissions. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000100 - Windows Server 2022 Active Directory Domain Controllers Organizational Unit (OU) object must have the proper access control permissions. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000110 - Windows Server 2022 organization created Active Directory Organizational Unit (OU) objects must have proper access control permissions. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000350 - Windows Server 2022 Add workstations to domain user right must only be assigned to the Administrators group on domain controllers. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-DC-000420 - Windows Server 2022 Enable computer and user accounts to be trusted for delegation user right must only be assigned to the Administrators group on domain controllers. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-MS-000010 - Windows Server 2022 must only allow administrators responsible for the member server or standalone or nondomain-joined system to have Administrator rights on the system. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-MS-000060 - Windows Server 2022 must restrict remote calls to the Security Account Manager (SAM) to Administrators on domain-joined member servers and standalone or nondomain-joined systems. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-MS-000130 - Windows Server 2022 Enable computer and user accounts to be trusted for delegation user right must not be assigned to any groups or accounts on domain-joined member servers and standalone or nondomain-joined systems. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000010 - Windows Server 2022 Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000040 - Windows Server 2022 back up files and directories user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000060 - Windows Server 2022 create a token object user right must not be assigned to any groups or accounts. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000070 - Windows Server 2022 create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000080 - Windows Server 2022 create permanent shared objects user right must not be assigned to any groups or accounts. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000090 - Windows Server 2022 create symbolic links user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000120 - Windows Server 2022 generate security audits user right must only be assigned to Local Service and Network Service. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000180 - Windows Server 2022 modify firmware environment values user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000190 - Windows Server 2022 perform volume maintenance tasks user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000200 - Windows Server 2022 profile single process user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000210 - Windows Server 2022 restore files and directories user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |
WN22-UR-000220 - Windows Server 2022 take ownership of files or other objects user right must only be assigned to the Administrators group. | DISA Windows Server 2022 STIG v1r4 | Windows | ACCESS CONTROL |