Theme

Item Search

Name	Audit Name	Plugin	Category
1.4.2.1 Ensure 'TACACS+/RADIUS' is configured correctly - server	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	ACCESS CONTROL
1.4.3.1 Ensure 'aaa authentication enable console' is configured correctly	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	ACCESS CONTROL
1.4.3.1 Ensure 'aaa authentication enable console' is configured correctly	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	ACCESS CONTROL
1.4.3.2 Ensure 'aaa authentication http console' is configured correctly	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	ACCESS CONTROL
1.4.3.2 Ensure 'aaa authentication http console' is configured correctly	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	ACCESS CONTROL
1.4.3.3 Ensure 'aaa authentication secure-http-client' is configured correctly	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	ACCESS CONTROL
1.4.3.4 Ensure 'aaa authentication serial console' is configured correctly	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	ACCESS CONTROL
1.4.4.1 Ensure 'aaa command authorization' is configured correctly	CIS Cisco Firewall v8.x L1 v4.2.0	Cisco	ACCESS CONTROL
1.4.4.1 Ensure 'aaa command authorization' is configured correctly	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	ACCESS CONTROL
1.4.4.2 Ensure 'aaa authorization exec' is configured correctly	CIS Cisco Firewall ASA 9 L1 v4.1.0	Cisco	ACCESS CONTROL
2.2.5 Ensure 'Add workstations to domain' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2016 DC L1 v1.4.0	Windows	ACCESS CONTROL
2.2.5 Ensure 'Add workstations to domain' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.5 Ensure 'Add workstations to domain' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0	Windows	ACCESS CONTROL
2.2.5 Ensure 'Add workstations to domain' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.3.0	Windows	ACCESS CONTROL
2.2.5 Ensure 'Add workstations to domain' is set to 'Administrators' (DC only) - Administrators	CIS Microsoft Windows Server 2019 DC L1 v1.3.0	Windows	ACCESS CONTROL
2.2.6 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users'	CIS Microsoft Windows 11 Stand-alone v1.0.0 L1 + NG	Windows	ACCESS CONTROL
2.2.6 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users'	CIS Microsoft Windows 10 Enterprise v1.12.0 L1 + BL	Windows	ACCESS CONTROL
2.2.6 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users'	CIS Microsoft Windows 10 Stand-alone v1.0.1 L1 + BL + NG	Windows	ACCESS CONTROL
2.2.6 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users'	CIS Microsoft Windows 11 Stand-alone v1.0.0 L1	Windows	ACCESS CONTROL
2.2.8 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2016 DC L1 v1.4.0	Windows	ACCESS CONTROL
2.2.8 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.2.8 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.0	Windows	ACCESS CONTROL
2.2.8 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only)	CIS Windows Server 2012 DC L1 v2.4.0	Windows	ACCESS CONTROL
2.2.8 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators' (DC only) - Administrators	CIS Microsoft Windows Server 2019 DC L1 v1.3.0	Windows	ACCESS CONTROL
2.2.9 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users' (MS only)	CIS Windows Server 2012 R2 MS L1 v2.6.0	Windows	ACCESS CONTROL
2.2.9 Ensure 'Allow log on through Remote Desktop Services' is set to 'Administrators, Remote Desktop Users' (MS only)	CIS Windows Server 2012 MS L1 v2.4.0	Windows	ACCESS CONTROL
2.3.17.1 Ensure 'User Account Control: Admin Approval Mode for the Built-in Administrator account' is set to 'Enabled'	CIS Microsoft Windows Server 2016 MS L1 v1.4.0	Windows	ACCESS CONTROL
2.3.17.1 Ensure 'User Account Control: Admin Approval Mode for the Built-in Administrator account' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.0	Windows	ACCESS CONTROL
2.3.17.1 Ensure 'User Account Control: Admin Approval Mode for the Built-in Administrator account' is set to 'Enabled'	CIS Windows Server 2012 MS L1 v2.4.0	Windows	ACCESS CONTROL
2.3.17.1 Ensure 'User Account Control: Admin Approval Mode for the Built-in Administrator account' is set to 'Enabled'	CIS Microsoft Windows Server 2019 DC L1 v1.3.0	Windows	ACCESS CONTROL
2.3.17.1 Ensure 'User Account Control: Admin Approval Mode for the Built-in Administrator account' is set to 'Enabled'	CIS Microsoft Windows Server 2019 MS L1 v1.3.0	Windows	ACCESS CONTROL
3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account	CIS MongoDB 4 L1 OS Windows v1.0.0	Windows	ACCESS CONTROL
3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account	CIS MongoDB 4 L1 OS Linux v1.0.0	Unix	ACCESS CONTROL
3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account	CIS MongoDB 5 L1 OS Windows v1.1.0	Windows	ACCESS CONTROL
3.3 Ensure that MongoDB is run using a non-privileged, dedicated service account	CIS MongoDB 5 L1 OS Linux v1.1.0	Unix	ACCESS CONTROL
5.2.2 Prefer using dedicated GCP Service Accounts and Workload Identity	CIS Google Kubernetes Engine (GKE) v1.3.0 L1	GCP	ACCESS CONTROL
5.3.5 Ensure SSH access is limited	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS CentOS 6 Server L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - non-login shell	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
5.5.2 Ensure system accounts are secured - unlocked non-root	CIS CentOS 6 Workstation L1 v3.0.0	Unix	ACCESS CONTROL
18.3.1 Ensure 'Apply UAC restrictions to local accounts on network logons' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + BL + NG	Windows	ACCESS CONTROL
18.5.11.4 Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + BL	Windows	ACCESS CONTROL
18.5.11.4 Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v1.1.0 L1	Windows	ACCESS CONTROL
18.5.11.4 Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + BL + NG	Windows	ACCESS CONTROL
18.9.90.2 Ensure 'Always install with elevated privileges' is set to 'Disabled' - Disabled	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + NG	Windows	ACCESS CONTROL
18.9.90.2 Ensure 'Always install with elevated privileges' is set to 'Disabled' - Disabled	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + BL	Windows	ACCESS CONTROL
18.9.90.2 Ensure 'Always install with elevated privileges' is set to 'Disabled' - Disabled	CIS Microsoft Intune for Windows 10 v1.1.0 L1	Windows	ACCESS CONTROL
19.7.42.1 Ensure 'Always install with elevated privileges' is set to 'Disabled'	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + BL	Windows	ACCESS CONTROL
19.7.42.1 Ensure 'Always install with elevated privileges' is set to 'Disabled'	CIS Microsoft Intune for Windows 10 v1.1.0 L1 + BL + NG	Windows	ACCESS CONTROL
CIS Control 4 (4.3) Ensure the Use of Dedicated Administrative Accounts	CAS Implementation Group 1 Audit File	Unix	ACCESS CONTROL