800-53|CM-3e.

CONFIGURATION CHANGE CONTROL

Retains records of configuration-controlled changes to the information system for [Assignment: organization-defined time period];

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Category: CONFIGURATION MANAGEMENT

Family: CONFIGURATION MANAGEMENT

Baseline Impact: MODERATE,HIGH

Name	Plugin	Audit Name
1.4.4 Ensure boot loader does not allow removable media	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
1.6.1.10 Ensure system device files are labeled.	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
2.2.21 Ensure the TFTP server has not been installed	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts.	Unix	CIS Amazon Linux 2 STIG v2.0.0 L1 Server
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts.	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts.	Unix	CIS Amazon Linux 2 STIG v2.0.0 L1 Workstation
5.3.30 Ensure SSH does not permit GSSAPI	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
5.3.31 Ensure SSH does not permit Kerberos authentication	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
5.5.9 Ensure local interactive user accounts umask is 077	Unix	CIS Amazon Linux 2 STIG v2.0.0 STIG
FireEye - Configuration auditing logs the required number of changes	FireEye	TNS FireEye