800-53|IA-2(2)

Title

NETWORK ACCESS TO NON-PRIVILEGED ACCOUNTS

Description

The information system implements multifactor authentication for network access to non-privileged accounts.

Reference Item Details

Category: IDENTIFICATION AND AUTHENTICATION

Parent Title: IDENTIFICATION AND AUTHENTICATION (ORGANIZATIONAL USERS)

Family: IDENTIFICATION AND AUTHENTICATION

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.3.10.2 Set 'Network access: Allow anonymous SID/Name translation' to 'Disabled'WindowsCIS Windows 8 L1 v1.0.0
1.1.3.10.4 Configure 'Network access: Named Pipes that can be accessed anonymously'WindowsCIS Windows 8 L1 v1.0.0
1.2.1 Set 'privilege 1' for local usersCiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.2.1 Set 'privilege 1' for local usersCiscoCIS Cisco IOS XE 16.x v2.2.0 L1
1.2.5 Two-factor authentication with the SSH serverArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 Optional Security Recommendations
1.3 Ensure that Multi-Factor Authentication is 'Enabled' for All Non-Service AccountsGCPCIS Google Cloud Platform Foundation v5.0.0 L1
1.4 Ensure multi-factor authentication (MFA) is turned on for all human users with password-based authenticationSnowflakeCIS Snowflake Foundations v1.0.0 L1
1.4 Ensure that Security Key Enforcement is Enabled for All Admin AccountsGCPCIS Google Cloud Platform Foundation v5.0.0 L2
1.7 VCSA-80-000060VMwareCIS VMware vSphere 8.0 vCenter STIG v1.0.0 CAT II
1.9.3 Two-factor authentication with the https-server serverArubaOSCIS HPE Aruba Networking CX Switch v1.0.1 Optional Security Recommendations
1.19 UBTU-24-100650UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.20 UBTU-24-100660UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.30 UBTU-24-100910UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.48 RHEL-10-200621UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.54 AZLX-23-001230UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.55 AZLX-23-001235UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.57 APPL-26-001150UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT I
1.59 APPL-14-001150UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT I
1.59 OL09-00-000285UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.71 SLES-15-020030UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.78 UBTU-24-400020UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.102 UBTU-22-612010UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.123 APPL-26-003020UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.124 APPL-14-003020UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.124 APPL-26-003030UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.125 APPL-14-003030UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.125 APPL-26-003050UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.126 APPL-14-003050UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.126 APPL-26-003051UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.127 APPL-14-003051UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.127 APPL-26-003052UnixCIS Apple macOS 26 Tahoe STIG v1.0.0 CAT II
1.128 APPL-14-003052UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.175 OL09-00-000940UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.175 WN16-DC-000310WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II
1.185 OL08-00-020250UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.208 RHEL-09-255035UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.209 RHEL-09-255040UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT I
1.268 ALMA-09-034120UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.268 OL09-00-002343UnixCIS Oracle Linux 9 STIG v1.0.0 CAT I
1.269 ALMA-09-034340UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.283 OL09-00-002359UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.332 RHEL-10-700600UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.333 RHEL-10-700610UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.339 RHEL-09-611160UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.393 RHEL-10-701220UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
2.1 Ensure Authentication is configuredUnixCIS MongoDB 7 v1.2.0 L1 Unix
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 7 v1.2.0 L1 Windows
2.1 Ensure Authentication is configuredUnixCIS MongoDB 3.6 L1 Unix Audit v1.1.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 4 L1 OS Linux v1.0.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 5 L1 OS Windows v1.2.0