Item Search

NameAudit NamePluginCategory
1.5 Ensure MFA is enabled for the 'root' user accountCIS Amazon Web Services Foundations L1 1.4.0amazon_aws

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

2.3.7.3 Ensure 'Interactive logon: Machine account lockout threshold' is set to '10 or fewer invalid logon attempts, but not 0'CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BL + NGWindows

ACCESS CONTROL

2.3.7.3 Ensure 'Interactive logon: Machine account lockout threshold' is set to '10 or fewer invalid logon attempts, but not 0'CIS Microsoft Windows 10 Enterprise v1.12.0 L2 + BL + NGWindows

ACCESS CONTROL

2.9 Pair the remote control infrared receiver if enabledCIS Apple macOS 10.12 L1 v1.2.0Unix

ACCESS CONTROL

2.9 Pair the remote control infrared receiver if enabled - 'UIDFilter != none'CIS Apple OSX 10.9 L1 v1.3.0Unix

ACCESS CONTROL

2.9 Pair the remote control infrared receiver if enabled - 'UIDFilter != none'CIS Apple OSX 10.11 El Capitan L1 v1.1.0Unix

ACCESS CONTROL

2.9 Pair the remote control infrared receiver if enabled - 'UIDFilter != none'CIS Apple OSX 10.10 Yosemite L1 v1.2.0Unix

ACCESS CONTROL

2.11 Set 'Refresh interval' to '1'CIS Microsoft Exchange Server 2016 CAS v1.0.0Windows

ACCESS CONTROL

2.11 Set 'Refresh interval' to '1'CIS Microsoft Exchange Server 2013 CAS v1.1.0Windows

ACCESS CONTROL

2.15 Set 'Allow unmanaged devices' to 'False'CIS Microsoft Exchange Server 2013 CAS v1.1.0Windows

ACCESS CONTROL

2.15 Set 'Allow unmanaged devices' to 'False'CIS Microsoft Exchange Server 2016 CAS v1.0.0Windows

ACCESS CONTROL

2.16 Set 'Require encryption on device' to 'True'CIS Microsoft Exchange Server 2016 CAS v1.0.0Windows

ACCESS CONTROL

2.16 Set 'Require encryption on device' to 'True'CIS Microsoft Exchange Server 2013 CAS v1.1.0Windows

ACCESS CONTROL

2.21 Set 'Require password' to 'True'CIS Microsoft Exchange Server 2016 CAS v1.0.0Windows

ACCESS CONTROL

2.21 Set 'Require password' to 'True'CIS Microsoft Exchange Server 2013 CAS v1.1.0Windows

ACCESS CONTROL

18.8.34.6.1 (BL) Ensure 'Allow standby states (S1-S3) when sleeping (on battery)' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.8.34.6.1 (BL) Ensure 'Allow standby states (S1-S3) when sleeping (on battery)' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.8.34.6.4 Ensure 'Allow standby states (S1-S3) when sleeping (plugged in)' is set to 'Disabled'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.1.1 (BL) Ensure 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' is set to 'Disabled'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.1.1 Ensure 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' is set to 'Disabled'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.1.10 (BL) Ensure 'Configure use of hardware-based encryption for fixed data drives' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.1.11 (BL) Ensure 'Configure use of hardware-based encryption for fixed data drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.1.11 (BL) Ensure 'Configure use of hardware-based encryption for fixed data drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.1.11 Ensure 'Configure use of hardware-based encryption for fixed data drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.1.12 (BL) Ensure 'Configure use of hardware-based encryption for fixed data drives: Restrict encryption algorithms and cipher suites allowed for hardware-based encryption' is set to 'Enabled: False'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.1.12 Ensure 'Configure use of hardware-based encryption for fixed data drives: Restrict encryption algorithms and cipher suites allowed for hardware-based encryption' is set to 'Enabled: False'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.1.13 (BL) Ensure 'Configure use of hardware-based encryption for fixed data drives: Restrict crypto algorithms or cipher suites to the following:' is set to 'Enabled: 2.16.840.1.101.3.4.1.2;2.16.840.1.101.3.4.1.42'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.1.13 Ensure 'Configure use of hardware-based encryption for fixed data drives: Restrict crypto algorithms or cipher suites to the following:' is set to 'Enabled: 2.16.840.1.101.3.4.1.2;2.16.840.1.101.3.4.1.42'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.2.11 Ensure 'Configure use of hardware-based encryption for operating system drives' is set to 'Enabled'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.2.12 (BL) Ensure 'Configure use of hardware-based encryption for operating system drives' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.2.12 (BL) Ensure 'Configure use of hardware-based encryption for operating system drives' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.2.12 Ensure 'Configure use of hardware-based encryption for operating system drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.2.13 (BL) Ensure 'Configure use of hardware-based encryption for operating system drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.2.14 (BL) Ensure 'Configure use of hardware-based encryption for operating system drives: Restrict encryption algorithms and cipher suites allowed for hardware-based encryption' is set to 'Enabled: False'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.2.14 (BL) Ensure 'Configure use of hardware-based encryption for operating system drives: Restrict encryption algorithms and cipher suites allowed for hardware-based encryption' is set to 'Enabled: False'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.2.14 Ensure 'Configure use of hardware-based encryption for operating system drives: Restrict crypto algorithms or cipher suites to the following:' is set to 'Enabled: 2.16.840.1.101.3.4.1.2;2.16.840.1.101.3.4.1.42'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.3.10 (BL) Ensure 'Configure use of hardware-based encryption for removable data drives' is set to 'Enabled'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.3.11 (BL) Ensure 'Configure use of hardware-based encryption for removable data drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.3.11 (BL) Ensure 'Configure use of hardware-based encryption for removable data drives: Use BitLocker software-based encryption when hardware encryption is not available' is set to 'Enabled: True'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.3.12 (BL) Ensure 'Configure use of hardware-based encryption for removable data drives: Restrict encryption algorithms and cipher suites allowed for hardware-based encryption' is set to 'Enabled: False'CIS Microsoft Windows 8.1 v2.4.0 L1 BitlockerWindows

ACCESS CONTROL

18.9.11.3.13 (BL) Ensure 'Configure use of hardware-based encryption for removable data drives: Restrict crypto algorithms or cipher suites to the following:' is set to 'Enabled: 2.16.840.1.101.3.4.1.2;2.16.840.1.101.3.4.1.42'CIS Microsoft Windows 8.1 v2.4.0 L2 BitlockerWindows

ACCESS CONTROL

18.9.11.3.14 Ensure 'Configure use of passwords for removable data drives' is set to 'Disabled'CIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.4 Ensure 'Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later)' is set to 'Enabled: XTS-AES 256-bit' - EncryptionMethodWithXtsFdvCIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

18.9.11.4 Ensure 'Choose drive encryption method and cipher strength (Windows 10 [Version 1511] and later)' is set to 'Enabled: XTS-AES 256-bit' - EncryptionMethodWithXtsRdvCIS Microsoft Windows 10 Enterprise (Release 1809) v1.6.1 BLWindows

ACCESS CONTROL

Big Sur - Access Control for Mobile DevicesNIST macOS Big Sur v1.4.0 - 800-53r5 HighUnix

ACCESS CONTROL

Big Sur - Access Control for Mobile DevicesNIST macOS Big Sur v1.4.0 - 800-53r5 ModerateUnix

ACCESS CONTROL

Catalina - Access Control for Mobile DevicesNIST macOS Catalina v1.5.0 - All ProfilesUnix

ACCESS CONTROL

Catalina - Access Control for Mobile DevicesNIST macOS Catalina v1.5.0 - 800-53r5 ModerateUnix

ACCESS CONTROL

Monterey - Access Control for Mobile DevicesNIST macOS Monterey v1.0.0 - 800-53r5 LowUnix

ACCESS CONTROL

Salesforce.com : Securing Data Access - 'DashboardMobile iPad access'TNS Salesforce Best Practices Audit v1.2.0Salesforce.com

ACCESS CONTROL