800-53|AC-17(4)

Title

PRIVILEGED COMMANDS / ACCESS

Description

The organization:

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: AC-6

Category: ACCESS CONTROL

Parent Title: REMOTE ACCESS

Family: ACCESS CONTROL

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.2 Enable SSH (PermitRootLogin)	Unix	CIS FreeBSD v1.0.5
1.2.3.4.1 Set 'Configure Solicited Remote Assistance' to 'Disabled'	Windows	CIS Windows 8 L1 v1.0.0
1.2.3.4.2 Set 'Configure Offer Remote Assistance' to 'Disabled'	Windows	CIS Windows 8 L1 v1.0.0
1.2.4.6.1 Set 'Disallow Digest authentication' to 'Enabled'	Windows	CIS Windows 8 L1 v1.0.0
1.2.4.6.3 Set 'Allow Basic authentication' to 'Disabled'	Windows	CIS Windows 8 L1 v1.0.0
1.139 WN16-CC-000500	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT I
1.139 WN16-CC-000500	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT I
1.140 WN19-CC-000470	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT I
1.140 WN19-CC-000470	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT I
1.140 WN22-CC-000470	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT I
1.140 WN22-CC-000470	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT I
1.141 WN16-CC-000520	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II
1.141 WN16-CC-000520	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II
1.142 WN16-CC-000530	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT I
1.142 WN16-CC-000530	Windows	CIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT I
1.142 WN19-CC-000490	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II
1.142 WN19-CC-000490	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT II
1.143 WN19-CC-000500	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT I
1.143 WN19-CC-000500	Windows	CIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT I
1.143 WN22-CC-000500	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT I
1.143 WN22-CC-000500	Windows	CIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT I
2.2.2 - Configuring SSH - disabling direct root access - 'PermitRootLogin = no'	Unix	CIS AIX 5.3/6.1 L1 v1.1.0
5.2.8 Ensure SSH root login is disabled	Unix	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
5.2.8 Ensure SSH root login is disabled	Unix	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
5.2.8 Ensure SSH root login is disabled	Unix	CIS Amazon Linux v2.1.0 L1
5.8 Set DCUI.Access to allow trusted users to override lockdown mode	VMware	CIS VMware ESXi 5.1 v1.0.1 Level 1
5.9 Set DCUI.Access to allow trusted users to override lockdown mode	VMware	CIS VMware ESXi 5.5 v1.2.0 Level 1
6.1.9 Disable SSH root Login - Check if PermitRootLogin is set to no and not commented for the server.	Unix	CIS Solaris 10 L1 v5.2
6.6 Disable root login for SSH	Unix	CIS Solaris 11.2 L1 v1.1.0
6.6 Disable root login for SSH - PermitRootLogin = no	Unix	CIS Solaris 11 L1 v1.1.0
6.6 Disable root login for SSH - PermitRootLogin = no	Unix	CIS Solaris 11.1 L1 v1.0.0
9.3.8 Disable SSH Root Login	Unix	CIS Debian Linux 7 L1 v1.0.0
9.3.8 Disable SSH Root Login	Unix	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0
18.8.36.1 Ensure 'Configure Offer Remote Assistance' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
18.8.36.1 Ensure 'Configure Offer Remote Assistance' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
18.8.36.2 Ensure 'Configure Solicited Remote Assistance' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
18.8.36.2 Ensure 'Configure Solicited Remote Assistance' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
18.9.97.1.1 Ensure 'Allow Basic authentication' is set to 'Disabled' - Client	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
18.9.97.1.1 Ensure 'Allow Basic authentication' is set to 'Disabled' - Client	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
18.9.97.1.3 Ensure 'Disallow Digest authentication' is set to 'Enabled'	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
18.9.97.1.3 Ensure 'Disallow Digest authentication' is set to 'Enabled'	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
18.9.97.2.1 Ensure 'Allow Basic authentication' is set to 'Disabled' - Service	Windows	CIS Windows 7 Workstation Level 1 v3.2.0
18.9.97.2.1 Ensure 'Allow Basic authentication' is set to 'Disabled' - Service	Windows	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
18.9.97.2.2 Ensure 'Allow remote server management through WinRM' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 2 v3.2.0
18.9.97.2.2 Ensure 'Allow remote server management through WinRM' is set to 'Disabled'	Windows	CIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0
Allow Basic authentication - Client - AllowBasic	Windows	MSCT Windows 10 v20H2 v1.0.0
Allow Basic authentication - Client - AllowBasic	Windows	MSCT Windows 10 v21H1 v1.0.0
Allow Basic authentication - Client - AllowBasic	Windows	MSCT Windows 11 v23H2 v1.0.0
Allow Basic authentication - Client - AllowBasic	Windows	MSCT Windows Server 2016 DC v1.0.0
Allow Basic authentication - Client - AllowBasic	Windows	MSCT Windows Server 2022 v1.0.0

Detections

Analytics

800-53|AC-17(4)

Title

Description

Reference Item Details

Audit Items