Theme

Item Search

Name	Audit Name	Plugin	Category
1.1 Ensure a separate user and group exist for Cassandra - group	CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.1 Ensure a separate user and group exist for Cassandra - group	CIS Apache Cassandra 3.11 L2 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.1 Ensure a separate user and group exist for Cassandra - passwd	CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.1 Ensure a separate user and group exist for Cassandra - passwd	CIS Apache Cassandra 3.11 L2 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.1 Ensure a separate user and group exist for Cassandra - user exists in group	CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.2.15 Ensure that the admission control plugin NamespaceLifecycle is set	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
1.2.17 Ensure that the admission control plugin NodeRestriction is set	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
1.3.1 Ensure sudo is installed	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
1.3.1 Ensure sudo is installed	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	ACCESS CONTROL
1.3.1 Ensure that the --terminated-pod-gc-threshold argument is set as appropriate	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
1.3.2 Ensure sudo commands use pty	CIS Fedora 19 Family Linux Workstation L1 v1.0.0	Unix	ACCESS CONTROL
1.3.2 Ensure sudo commands use pty	CIS Fedora 19 Family Linux Server L1 v1.0.0	Unix	ACCESS CONTROL
1.3.3 Ensure that the --use-service-account-credentials argument is set to true	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
1.3.4 Ensure that the --service-account-private-key-file argument is set as appropriate	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
1.4.1 Ensure that the --profiling argument is set to false	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
1.5 Ensure the Cassandra service is run as a non-root user	CIS Apache Cassandra 3.11 L1 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.5 Ensure the Cassandra service is run as a non-root user	CIS Apache Cassandra 3.11 L2 Unix Audit v1.0.0	Unix	ACCESS CONTROL
1.13 Ensure there is only one active access key available for any single IAM user	CIS Amazon Web Services Foundations L1 1.5.0	amazon_aws	ACCESS CONTROL
2.1 Run BIND as a non-root User - process -u named	CIS BIND DNS v1.0.0 L1 Authoritative Name Server	Unix	ACCESS CONTROL
2.1 Run BIND as a non-root User - process -u named	CIS BIND DNS v1.0.0 L1 Caching Only Name Server	Unix	ACCESS CONTROL
2.1 Run BIND as a non-root User - UID	CIS BIND DNS v1.0.0 L1 Authoritative Name Server	Unix	ACCESS CONTROL
2.1 Run BIND as a non-root User - UID	CIS BIND DNS v1.0.0 L1 Caching Only Name Server	Unix	ACCESS CONTROL
2.6 Ensure that the --peer-auto-tls argument is not set to true	CIS Kubernetes Benchmark v1.6.1 L1 Master	Unix	ACCESS CONTROL
2.6 Ensure that the User-ID service account does not have interactive logon rights	CIS Palo Alto Firewall 9 v1.0.1 L1	Palo_Alto	ACCESS CONTROL
2.6 Ensure that the User-ID service account does not have interactive logon rights	CIS Palo Alto Firewall 10 v1.0.0 L1	Palo_Alto	ACCESS CONTROL
3.7.1 Ensure 'Notification Settings' are configured for all 'Managed Apps'	MobileIron - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	ACCESS CONTROL
3.7.1 Ensure 'Notification Settings' are configured for all 'Managed Apps'	AirWatch - CIS Apple iOS 13 and iPadOS 13 Institution Owned L1	MDM	ACCESS CONTROL
3.7.1 Ensure 'Notification Settings' are configured for all 'Managed Apps'	AirWatch - CIS Apple iOS 14 and iPadOS 14 Institution Owned L1	MDM	ACCESS CONTROL
4.1 Ensure that a user for the container has been created	CIS Docker v1.3.1 L1 Docker Linux	Unix	ACCESS CONTROL
4.3 Ensure excessive function privileges are revoked	CIS PostgreSQL 10 OS v1.0.0	Unix	ACCESS CONTROL
5.2 Ensure SNMPv1/2 are set to Read Only	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	ACCESS CONTROL
5.2.1 Ensure sudo is installed	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.2.1 Ensure sudo is installed	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
5.2.1 Ensure sudo is installed	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.2.2 Ensure sudo commands use pty	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.2.2 Ensure sudo commands use pty	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
5.2.2 Ensure sudo commands use pty	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.2.2 Ensure sudo commands use pty	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - pam_wheel.so	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - pam_wheel.so	CIS Red Hat 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - pam_wheel.so	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - wheel group contains root	CIS Oracle Linux 6 Workstation L1 v2.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - wheel group contains root	CIS Oracle Linux 6 Server L1 v2.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - wheel group contains root	CIS Red Hat 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.7 Ensure access to the su command is restricted - wheel group contains root	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
6.4 Restrict root Login to System Console	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.5 Restrict Access to the su Command - auth required pam_wheel.so use_uid'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.5 Restrict Access to the su Command - wheel:x:10:root, <user list>'	CIS Red Hat Enterprise Linux 5 L1 v2.2.1	Unix	ACCESS CONTROL
6.11.4 Ensure Console Port is Set as Insecure	CIS Juniper OS Benchmark v2.1.0 L2	Juniper	ACCESS CONTROL
6.11.5 Ensure Log-out-on-disconnect is Set for Console	CIS Juniper OS Benchmark v2.1.0 L1	Juniper	ACCESS CONTROL