Theme

CCI|CCI-000166

Title

The information system protects against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
AMLS-NM-000170 - The Arista Multilayer Switch must protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.	Arista	DISA STIG Arista MLS DCS-7000 Series NDM v1r3
CASA-ND-000210 - The Cisco ASA must be configured to protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation - buffered informational	Cisco	DISA STIG Cisco ASA NDM v1r1
CASA-ND-000210 - The Cisco ASA must be configured to protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation - logging enable	Cisco	DISA STIG Cisco ASA NDM v1r1
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - archive logging enable	Cisco	DISA STIG Cisco IOS XE Switch NDM v2r4
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - archive logging enable	Cisco	DISA STIG Cisco IOS Switch NDM v2r4
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - logging enable	Cisco	DISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - logging enable	Cisco	DISA STIG Cisco IOS XE Router NDM v2r5
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - logging userinfo	Cisco	DISA STIG Cisco IOS XE Switch NDM v2r4
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - logging userinfo	Cisco	DISA STIG Cisco IOS XE Router NDM v2r5
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - logging userinfo	Cisco	DISA STIG Cisco IOS Switch NDM v2r4
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity - logging userinfo	Cisco	DISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000210 - The Cisco switch must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation - aaa accounting default group	Cisco	DISA STIG Cisco NX-OS Switch NDM v2r3
CISC-ND-000210 - The Cisco switch must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation - servers	Cisco	DISA STIG Cisco NX-OS Switch NDM v2r3
DKER-EE-001170 - A policy set using the built-in role-based access control (RBAC) capabilities in the Universal Control Plane (UCP) component of Docker Enterprise must be configured.	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
DKER-EE-001180 - A policy set using the built-in role-based access control (RBAC) capabilities in the Docker Trusted Registry (DTR) component of Docker Enterprise must be set - repositoryAccess	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix DTR v2r1
DKER-EE-001180 - A policy set using the built-in role-based access control (RBAC) capabilities in the Docker Trusted Registry (DTR) component of Docker Enterprise must be set - team member access	Unix	DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
DTBC-0030 - Incognito mode must be disabled.	Windows	DISA STIG Google Chrome v2r8
DTBC-0045 - Session only based cookies must be disabled.	Windows	DISA STIG Google Chrome v2r8
DTBI780-IE11 - InPrivate Browsing must be disallowed.	Windows	DISA STIG IE 11 v2r3
EDGE-00-000005 - InPrivate mode must be disabled.	Windows	DISA STIG Edge v1r6
EDGE-00-000033 - Browser history must be saved.	Windows	DISA STIG Edge v1r6
F5BI-DM-000043 - The BIG-IP appliance must be configured to protect against an individual (or process acting on behalf of an individual) falsely denying having performed system configuration changes.	F5	DISA F5 BIG-IP Device Management 11.x STIG v2r1
FGFW-ND-000060 - The FortiGate device must log all user activity.	FortiGate	DISA Fortigate Firewall NDM STIG v1r3
JUNI-ND-000210 - The Juniper router must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation.	Juniper	DISA STIG Juniper Router NDM v2r2
MD3X-00-000040 - MongoDB must provide audit record generation for DoD-defined auditable events within all DBMS/database components.	Unix	DISA STIG MongoDB Enterprise Advanced 3.x v2r1 OS
MD4X-00-000100 - MongoDB must provide audit record generation for DoD-defined auditable events within all DBMS/database components.	Unix	DISA STIG MongoDB Enterprise Advanced 4.x v1r2 OS
SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - '.conf'	Unix	DISA STIG Solaris 11 SPARC v2r6
SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - '.conf'	Unix	DISA STIG Solaris 11 X86 v2r6
SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - 'getplugin'	Unix	DISA STIG Solaris 11 SPARC v2r6
SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server - 'getplugin'	Unix	DISA STIG Solaris 11 X86 v2r6
SPLK-CL-000090 - Splunk Enterprise must be configured to protect the log data stored in the indexes from alteration.	Unix	DISA STIG Splunk Enterprise 8.x for Linux v1r3 STIG OS
SPLK-CL-000160 - Splunk Enterprise must be configured to protect the log data stored in the indexes from alteration.	Splunk	DISA STIG Splunk Enterprise 7.x for Windows v2r3 REST API
SQL6-D0-004000 - SQL Server must protect against a user falsely repudiating by ensuring all accounts are individual, unique, and not shared.	Windows	DISA STIG SQL Server 2016 Instance OS Audit v2r8
TCAT-AS-000050 - AccessLogValve must be configured for each application context.	Unix	DISA STIG Apache Tomcat Application Server 9 v2r4
TCAT-AS-000050 - AccessLogValve must be configured for each application context.	Unix	DISA STIG Apache Tomcat Application Server 9 v2r4 Middleware
WBLC-02-000062 - Oracle WebLogic must protect against an individual falsely denying having performed a particular action.	Windows	Oracle WebLogic Server 12c Windows v2r1
WBLC-02-000062 - Oracle WebLogic must protect against an individual falsely denying having performed a particular action.	Unix	Oracle WebLogic Server 12c Linux v2r1
WBLC-02-000062 - Oracle WebLogic must protect against an individual falsely denying having performed a particular action.	Unix	Oracle WebLogic Server 12c Linux v2r1 Middleware
WBSP-AS-000070 - The WebSphere Application Server security auditing must be enabled.	Windows	DISA IBM WebSphere Traditional 9 Windows STIG v1r1
WBSP-AS-000070 - The WebSphere Application Server security auditing must be enabled.	Unix	DISA IBM WebSphere Traditional 9 STIG v1r1
WBSP-AS-000070 - The WebSphere Application Server security auditing must be enabled.	Unix	DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware