Theme

CCI|CCI-000015

Title

The organization employs automated mechanisms to support the information system account management functions.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

Name	Plugin	Audit Name
AIX7-00-001000 - AIX /etc/security/mkuser.sys.custom file must not exist unless it is needed for customizing a new user account.	Unix	DISA STIG AIX 7.x v2r5
AIX7-00-001015 - The shipped /etc/security/mkuser.sys file on AIX must not be customized directly.	Unix	DISA STIG AIX 7.x v2r5
AIX7-00-001016 - The regular users default primary group must be staff (or equivalent) on AIX.	Unix	DISA STIG AIX 7.x v2r5
Big Sur - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Catalina v1.5.0 - All Profiles
Catalina - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Catalina v1.5.0 - 800-53r5 High
CNTR-K8-000220 - The Kubernetes Controller Manager must create unique service accounts for each work payload.	Unix	DISA STIG Kubernetes v1r5
DB2X-00-000300 - DB2 must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals - config file	Unix	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Linux
DB2X-00-000300 - DB2 must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals - config file	Windows	DISA STIG IBM DB2 v10.5 LUW v1r4 OS Windows
DKER-EE-001100 - LDAP integration in Docker Enterprise must be configured.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
EP11-00-000700 - The EDB Postgres Advanced Server must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.	Windows	EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r1
F5BI-DM-000013 - The BIG-IP appliance must provide automated support for account management functions.	F5	DISA F5 BIG-IP Device Management 11.x STIG v2r1
MD3X-00-000010 - MongoDB must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.	Unix	DISA STIG MongoDB Enterprise Advanced 3.x v2r1 OS
MD4X-00-001600 - MongoDB must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals. - authorization	Unix	DISA STIG MongoDB Enterprise Advanced 4.x v1r1 OS
MD4X-00-001600 - MongoDB must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals. - LDAP Server	Unix	DISA STIG MongoDB Enterprise Advanced 4.x v1r1 OS
Monterey - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Monterey v1.0.0 - 800-53r4 Moderate
Monterey - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Monterey v1.0.0 - All Profiles
Monterey - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Monterey v1.0.0 - 800-53r5 High
Monterey - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Monterey v1.0.0 - 800-53r4 High
Monterey - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Monterey v1.0.0 - 800-53r5 Moderate
Monterey - Employ Automated Mechanisms for Account Management Functions	Unix	NIST macOS Monterey v1.0.0 - CNSSI 1253
OL6-00-000524 - The system must provide automated support for account management functions.	Unix	DISA STIG Oracle Linux 6 v2r6
PGS9-00-000500 - PostgreSQL must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.	Unix	DISA STIG PostgreSQL 9.x on RHEL OS v2r2
PPS9-00-000700 - The EDB Postgres Advanced Server must integrate with an organization-level authentication/access mechanism providing account management and automation for all users, groups, roles, and any other principals.	Unix	EDB PostgreSQL Advanced Server OS Linux Audit v2r1
SQL6-D0-003800 - SQL Server must be configured to utilize the most-secure authentication method available.	Windows	DISA STIG SQL Server 2016 Instance OS Audit v2r7