Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Policies
Overview
Search
AWS Resources
Azure Resources
GCP Resources
Kubernetes Resources
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-000765
CCI
CCI|CCI-000765
Title
The information system implements multifactor authentication for network access to privileged accounts.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2009
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication
Unix
DISA STIG AIX 7.x v2r8
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - ChallengeResponseAuthentication
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - enforceSmartCard
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - PasswordAuthentication
Unix
DISA STIG Apple Mac OSX 10.14 v2r6
Big Sur - Enforce multifactor authentication for network access to privileged accounts
Unix
NIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Enforce multifactor authentication for network access to privileged accounts
Unix
NIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-53r5 Low
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-171
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Enforce Smartcard Authentication
Unix
NIST macOS Catalina v1.5.0 - 800-53r4 Low
DKER-EE-002180 - SAML integration must be enabled in Docker Enterprise.
Unix
DISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
JBOS-AS-000265 - The JBoss Server must be configured to use certificates to authenticate admins.
Unix
DISA RedHat JBoss EAP 6.3 STIG v2r3
Monterey - Enforce multifactor authentication for network access to privileged accounts
Unix
NIST macOS Monterey v1.0.0 - All Profiles
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICES
Windows
DISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICES
Unix
DISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITES
Unix
DISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITES
Windows
DISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATION
Windows
DISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATION
Unix
DISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSION
Unix
DISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSION
Windows
DISA STIG Oracle 11.2g v2r3 Windows
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts.
Unix
DISA STIG Oracle 12c v2r8 Linux
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts.
Windows
DISA STIG Oracle 12c v2r8 Windows
OL6-00-000349 - The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication.
Unix
DISA STIG Oracle Linux 6 v2r7
OL08-00-020250 - OL 8 must implement multifactor authentication for access to interactive accounts
Unix
DISA Oracle Linux 8 STIG v1r7
RHEL-06-000349 - The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication - ALT for authentication.
Unix
DISA Red Hat Enterprise Linux 6 STIG v2r2
RHEL-08-020250 - RHEL 8 must implement smart card logon for multifactor authentication for access to interactive accounts.
Unix
DISA Red Hat Enterprise Linux 8 STIG v1r11
SLES-12-030520 - The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).
Unix
DISA SLES 12 STIG v2r11
SLES-15-020030 - The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).
Unix
DISA SLES 15 STIG v1r10
TCAT-AS-000610 - JMX authentication must be secured.
Unix
DISA STIG Apache Tomcat Application Server 9 v2r5 Middleware
TCAT-AS-000610 - JMX authentication must be secured.
Unix
DISA STIG Apache Tomcat Application Server 9 v2r5
UBTU-16-030840 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.
Unix
DISA STIG Ubuntu 16.04 LTS v2r3
UBTU-18-010427 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.
Unix
DISA STIG Ubuntu 18.04 LTS v2r11
UBTU-20-010033 - The Ubuntu operating system must implement smart card logins for multifactor authentication for local and network access to privileged and non-privileged accounts
Unix
DISA STIG Ubuntu 20.04 LTS v1r9
UBTU-20-010033 - The Ubuntu operating system must implement smart card logins for multifactor authentication for local and network access to privileged and non-privileged accounts - libpam-pkcs11
Unix
DISA STIG Ubuntu 20.04 LTS v1r7
UBTU-20-010033 - The Ubuntu operating system must implement smart card logins for multifactor authentication for local and network access to privileged and non-privileged accounts - PubkeyAuthentication
Unix
DISA STIG Ubuntu 20.04 LTS v1r7
VCSA-70-000060 - The vCenter Server must require multifactor authentication.
VMware
DISA STIG VMware vSphere 7.0 vCenter v1r2
WBSP-AS-001030 - The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.
Unix
DISA IBM WebSphere Traditional 9 STIG v1r1
WBSP-AS-001030 - The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.
Windows
DISA IBM WebSphere Traditional 9 Windows STIG v1r1
WBSP-AS-001030 - The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.
Unix
DISA IBM WebSphere Traditional 9 STIG v1r1 Middleware
WN10-SO-000251 - Windows 10 must use multifactor authentication for local and network access to privileged and nonprivileged accounts - Readers
Windows
DISA Windows 10 STIG v2r7
WN10-SO-000251 - Windows 10 must use multifactor authentication for local and network access to privileged and nonprivileged accounts - SmartCards
Windows
DISA Windows 10 STIG v2r7
WN11-SO-000251 - Windows 11 must use multifactor authentication for local and network access to privileged and nonprivileged accounts - Readers
Windows
DISA Windows 11 STIG v1r4
WN11-SO-000251 - Windows 11 must use multifactor authentication for local and network access to privileged and nonprivileged accounts - SmartCards
Windows
DISA Windows 11 STIG v1r4
WN12-PK-000008-DC - Active directory user accounts, including administrators, must be configured to require the use of a Common Access Card (CAC), PIV-compliant hardware token, or Alternate Logon Token (ALT) for user authentication.
Windows
DISA Windows Server 2012 and 2012 R2 DC STIG v3r6
