CCI|CCI-000015

Title

The organization employs automated mechanisms to support the information system account management functions.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIX7-00-001000 - AIX /etc/security/mkuser.sys.custom file must not exist unless it is needed for customizing a new user account.UnixDISA STIG AIX 7.x v2r5
AIX7-00-001015 - The shipped /etc/security/mkuser.sys file on AIX must not be customized directly.UnixDISA STIG AIX 7.x v2r5
AIX7-00-001016 - The regular users default primary group must be staff (or equivalent) on AIX.UnixDISA STIG AIX 7.x v2r5
Big Sur - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Catalina v1.5.0 - 800-53r5 High
CNTR-K8-000220 - The Kubernetes Controller Manager must create unique service accounts for each work payload.UnixDISA STIG Kubernetes v1r5
DB2X-00-000300 - DB2 must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals - config fileUnixDISA STIG IBM DB2 v10.5 LUW v1r4 OS Linux
DB2X-00-000300 - DB2 must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals - config fileWindowsDISA STIG IBM DB2 v10.5 LUW v1r4 OS Windows
DKER-EE-001100 - LDAP integration in Docker Enterprise must be configured.UnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
EP11-00-000700 - The EDB Postgres Advanced Server must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.WindowsEDB PostgreSQL Advanced Server v11 Windows OS Audit v2r1
F5BI-DM-000013 - The BIG-IP appliance must provide automated support for account management functions.F5DISA F5 BIG-IP Device Management 11.x STIG v2r1
MD3X-00-000010 - MongoDB must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.UnixDISA STIG MongoDB Enterprise Advanced 3.x v2r1 OS
MD4X-00-001600 - MongoDB must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals. - authorizationUnixDISA STIG MongoDB Enterprise Advanced 4.x v1r1 OS
MD4X-00-001600 - MongoDB must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals. - LDAP ServerUnixDISA STIG MongoDB Enterprise Advanced 4.x v1r1 OS
Monterey - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Monterey v1.0.0 - 800-53r4 Moderate
Monterey - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Monterey v1.0.0 - All Profiles
Monterey - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Monterey v1.0.0 - 800-53r5 High
Monterey - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Monterey v1.0.0 - 800-53r4 High
Monterey - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Monterey v1.0.0 - 800-53r5 Moderate
Monterey - Employ Automated Mechanisms for Account Management FunctionsUnixNIST macOS Monterey v1.0.0 - CNSSI 1253
OL6-00-000524 - The system must provide automated support for account management functions.UnixDISA STIG Oracle Linux 6 v2r6
PGS9-00-000500 - PostgreSQL must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.UnixDISA STIG PostgreSQL 9.x on RHEL OS v2r2
PPS9-00-000700 - The EDB Postgres Advanced Server must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.UnixEDB PostgreSQL Advanced Server OS Linux Audit v2r1
SQL6-D0-003800 - SQL Server must be configured to utilize the most-secure authentication method available.WindowsDISA STIG SQL Server 2016 Instance OS Audit v2r7