Item Search

NameAudit NamePluginCategory
1.2.15 Ensure that the admission control plugin PodSecurityPolicy is setCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

SYSTEM AND SERVICES ACQUISITION

1.2.25 Ensure that the --service-account-lookup argument is set to trueCIS RedHat OpenShift Container Platform 4 v1.4.0 L1OpenShift
1.2.27 Ensure that the --service-account-lookup argument is set to trueCIS RedHat OpenShift Container Platform 4 v1.2.0 L1OpenShift
1.2.27 Ensure that the --service-account-lookup argument is set to trueCIS RedHat OpenShift Container Platform 4 v1.3.0 L1OpenShift
2.1 Ensure that authentication is enabled for Cassandra databasesCIS Apache Cassandra 3.11 L2 Unix Audit v1.0.0Unix

ACCESS CONTROL

2.1 Ensure that authentication is enabled for Cassandra databasesCIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0Unix

ACCESS CONTROL

2.2 Ensure that authorization is enabled for Cassandra databasesCIS Apache Cassandra 3.11 L2 Unix Audit v1.0.0Unix

ACCESS CONTROL

2.2 Ensure that authorization is enabled for Cassandra databasesCIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0Unix

ACCESS CONTROL

3.3 Restrict Query OriginsCIS BIND DNS v1.0.0 L1 Authoritative Name ServerUnix

ACCESS CONTROL

3.4 Ensure DLP policies are enabledCIS Microsoft 365 Foundations E3 L1 v1.3.0microsoft_azure
3.4 Ensure DLP policies are enabledCIS Microsoft 365 Foundations E3 L1 v1.4.0microsoft_azure
3.4 Ensure DLP policies are enabledCIS Microsoft 365 Foundations E3 L1 v1.5.0microsoft_azure
3.4 Ensure DLP policies are enabledCIS Microsoft 365 Foundations E3 L1 v2.0.0microsoft_azure
3.5 Ensure DLP policies are enabled for Microsoft TeamsCIS Microsoft 365 Foundations E5 L1 v2.0.0microsoft_azure
3.5 Ensure DLP policies are enabled for Microsoft TeamsCIS Microsoft 365 Foundations E5 L1 v1.5.0microsoft_azure
3.5 Ensure DLP policies are enabled for Microsoft TeamsCIS Microsoft 365 Foundations E5 L1 v1.3.0microsoft_azure
3.5 Ensure DLP policies are enabled for Microsoft TeamsCIS Microsoft 365 Foundations E5 L1 v1.4.0microsoft_azure
3.7 Ensure external file sharing in Teams is enabled for only approved cloud storage servicesCIS Microsoft 365 Foundations E3 L2 v1.3.0microsoft_azure
3.7 Ensure external file sharing in Teams is enabled for only approved cloud storage servicesCIS Microsoft 365 Foundations E3 L2 v1.4.0microsoft_azure
3.7 Ensure external file sharing in Teams is enabled for only approved cloud storage servicesCIS Microsoft 365 Foundations E3 L2 v2.0.0microsoft_azure
3.7 Ensure external file sharing in Teams is enabled for only approved cloud storage servicesCIS Microsoft 365 Foundations E3 L2 v1.5.0microsoft_azure
4.1.6 Ensure that Service Account Tokens are only mounted where necessaryCIS Google Kubernetes Engine (GKE) v1.3.0 L1GCP
4.1.6 Ensure that Service Account Tokens are only mounted where necessaryCIS Google Kubernetes Engine (GKE) v1.4.0 L1GCP
4.2.7 Ensure that the --make-iptables-util-chains argument is set to trueCIS RedHat OpenShift Container Platform 4 v1.3.0 L1OpenShift
4.2.7 Ensure that the --make-iptables-util-chains argument is set to trueCIS RedHat OpenShift Container Platform 4 v1.2.0 L1OpenShift
4.2.7 Ensure that the --make-iptables-util-chains argument is set to trueCIS RedHat OpenShift Container Platform 4 v1.4.0 L1OpenShift
6.2.2 (L1) Host must ensure all datastores have unique namesCIS VMware ESXi 8.0 v1.1.0 L1VMware

SYSTEM AND COMMUNICATIONS PROTECTION

8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly'CIS Apache HTTP Server 2.4 L1 v2.0.0Unix
8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly'CIS Apache HTTP Server 2.4 L1 v2.0.0 MiddlewareUnix
8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly'CIS Apache HTTP Server 2.4 L1 v1.5.0Unix
8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly'CIS Apache HTTP Server 2.4 L1 v1.5.0 MiddlewareUnix
8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly'CIS Apache HTTP Server 2.2 L1 v3.6.0Unix

ACCESS CONTROL

8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly'CIS Apache HTTP Server 2.2 L1 v3.6.0 MiddlewareUnix

ACCESS CONTROL

8.1 Ensure ServerTokens is Set to 'Prod' or 'ProductOnly' - ProdCIS Apache HTTP Server 2.4 L2 v1.5.0Unix
8.1.1 Ensure only one remote console connection is permitted to a VM at any timeCIS VMware ESXi 7.0 v1.2.0 Level 2VMware
8.1.1 Ensure only one remote console connection is permitted to a VM at any timeCIS VMware ESXi 7.0 v1.3.0 Level 2VMware
8.1.2 Ensure only one remote console connection is permitted to a VM at any timeCIS VMware ESXi 6.7 v1.2.0 Level 2VMware
8.1.2 Ensure only one remote console connection is permitted to a VM at any timeCIS VMware ESXi 7.0 v1.1.0 Level 2VMware
11.1 Ensure SELinux Is Enabled in Enforcing ModeCIS Apache HTTP Server 2.4 L2 v1.5.0Unix

ACCESS CONTROL

11.1 Ensure SELinux Is Enabled in Enforcing ModeCIS Apache HTTP Server 2.2 L2 v3.6.0Unix

ACCESS CONTROL

11.1 Ensure SELinux Is Enabled in Enforcing ModeCIS Apache HTTP Server 2.2 L2 v3.6.0 MiddlewareUnix

ACCESS CONTROL

11.1 Ensure SELinux Is Enabled in Enforcing Mode - configCIS Apache HTTP Server 2.4 L2 v2.0.0 MiddlewareUnix
11.1 Ensure SELinux Is Enabled in Enforcing Mode - configCIS Apache HTTP Server 2.4 L2 v2.0.0Unix
11.1 Ensure SELinux Is Enabled in Enforcing Mode - currentCIS Apache HTTP Server 2.4 L2 v2.0.0 MiddlewareUnix
11.1 Ensure SELinux Is Enabled in Enforcing Mode - currentCIS Apache HTTP Server 2.4 L2 v2.0.0Unix
11.1 Ensure SELinux Is Enabled in Enforcing Mode - currentCIS Apache HTTP Server 2.4 L2 v1.5.0 MiddlewareUnix

ACCESS CONTROL

12.2 Ensure the Apache AppArmor Profile Is Configured ProperlyCIS Apache HTTP Server 2.4 L2 v1.5.0 MiddlewareUnix
12.2 Ensure the Apache AppArmor Profile Is Configured ProperlyCIS Apache HTTP Server 2.4 L2 v2.0.0 MiddlewareUnix
12.2 Ensure the Apache AppArmor Profile Is Configured ProperlyCIS Apache HTTP Server 2.4 L2 v1.5.0Unix
12.2 Ensure the Apache AppArmor Profile Is Configured ProperlyCIS Apache HTTP Server 2.4 L2 v2.0.0Unix