| 1.2.2 Ensure that the --basic-auth-file argument is not set - ClusterOperators | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.2 Ensure that the --basic-auth-file argument is not set - openshift-apiserver | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.2 Ensure that the --basic-auth-file argument is not set - openshift-kube-apiserver | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.2 Ensure that the --token-auth-file parameter is not set | CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.2 Ensure that the --token-auth-file parameter is not set | CIS Kubernetes v1.20 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.2 Ensure that the --token-auth-file parameter is not set | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.2 Ensure that the --token-auth-file parameter is not set | CIS Kubernetes Benchmark v1.8.0 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the --DenyServiceExternalIPs is not set | CIS Kubernetes v1.24 Benchmark v1.0.0 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the --DenyServiceExternalIPs is not set | CIS Kubernetes v1.23 Benchmark v1.0.1 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the --token-auth-file parameter is not set - ClusterOperators | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the --token-auth-file parameter is not set - KubeApiServers | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the --token-auth-file parameter is not set - openshift-apiserver | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the --token-auth-file parameter is not set - openshift-kube-apiserver | CIS RedHat OpenShift Container Platform 4 v1.5.0 L1 | OpenShift | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.2.3 Ensure that the DenyServiceExternalIPs is set | CIS Kubernetes Benchmark v1.8.0 L1 Master | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 1.9.1.2 Ensure 'NTP authentication key' is configured correctly | CIS Cisco Firewall ASA 9 L1 v4.1.0 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| 1.9.1.2 Ensure 'NTP authentication key' is configured correctly | CIS Cisco ASA 9.x Firewall L1 v1.0.0 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| 3.2.2 Ensure authentication-type is set to MD5 | CIS Juniper OS Benchmark v2.1.0 L2 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.1.1 Ensure peer authentication is set to MD5 | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.1.2 Ensure peer authentication is set to IPSEC SA | CIS Juniper OS Benchmark v2.1.0 L2 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.2.1 Ensure IS-IS neighbor authentication is set to MD5 | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.2.2 Ensure IS-IS neighbor authentication is set to SHA1 | CIS Juniper OS Benchmark v2.1.0 L2 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.2.3 Ensure authentication check is not suppressed | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.2.4 Ensure loose authentication check is not configured | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.2.5 Ensure IS-IS Hello authentication check is not suppressed | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.2.6 Ensure PSNP authentication check is not set to suppressed | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.5.1 Ensure RIP authentication is set to MD5 | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.7.2 Ensure authentication is set to AES-CMAC | CIS Juniper OS Benchmark v2.1.0 L2 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.8.1 Ensure authentication is set to MD5 | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 4.11.1 Ensure authentication is set to MD5 | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 5.2.2 pwd_algorithm | CIS IBM AIX 7.2 L1 v1.1.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.3.4 Ensure password hashing algorithm is SHA-512 - password-auth | CIS Aliyun Linux 2 L1 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.7 Ensure SHA1 is set for SNMPv3 authentication | CIS Juniper OS Benchmark v2.1.0 L2 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 6.2.1 Ensure accounts in /etc/passwd use shadowed passwords | CIS Oracle Linux 6 Server L1 v2.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 6.2.1 Ensure accounts in /etc/passwd use shadowed passwords | CIS CentOS 6 Server L1 v3.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 6.2.1 Ensure accounts in /etc/passwd use shadowed passwords | CIS CentOS 6 Workstation L1 v3.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 6.2.2 Ensure /etc/shadow password fields are not empty | CIS CentOS 6 Server L1 v3.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 6.2.2 Ensure /etc/shadow password fields are not empty | CIS Oracle Linux 6 Workstation L1 v2.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 6.2.2 Ensure /etc/shadow password fields are not empty | CIS CentOS 6 Workstation L1 v3.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 6.2.10 Ensure no users have .netrc files | CIS SUSE Linux Enterprise Server 12 L1 v3.1.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 6.2.10 Ensure no users have .netrc files | CIS SUSE Linux Enterprise Workstation 12 L1 v3.1.0 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 6.2.12 Ensure no users have .netrc files | CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 6.2.12 Ensure no users have .netrc files | CIS SUSE Linux Enterprise Server 11 L1 v2.1.1 | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 6.2.16 Ensure no users have .netrc files | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Workstation | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 6.2.16 Ensure no users have .netrc files | CIS Red Hat Enterprise Linux 7 STIG v2.0.0 L1 Server | Unix | CONFIGURATION MANAGEMENT, MAINTENANCE |
| 6.6.12 Ensure SHA512 is used to hash local passwords | CIS Juniper OS Benchmark v2.1.0 L1 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| 7.1 Ensure appropriate key file permissions are set | CIS MongoDB 4 L1 OS Windows v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 7.3 Ensure strong authentication is utilized for all accounts | CIS MariaDB 10.6 Database L1 v1.0.0 | MySQLDB | IDENTIFICATION AND AUTHENTICATION |
| 8.5 Ensure each Zone has a Valid Digital Signature | CIS BIND DNS v1.0.0 L2 Authoritative Name Server | Unix | IDENTIFICATION AND AUTHENTICATION |
| 18.8.4.1 (L1) Ensure 'Encryption Oracle Remediation' is set to 'Enabled: Force Updated Clients' | CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.8.4.2 Ensure 'Remote host allows delegation of non-exportable credentials' is set to 'Enabled' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | IDENTIFICATION AND AUTHENTICATION |
