CCI|CCI-000765

Title

The information system implements multifactor authentication for network access to privileged accounts.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication - powerscMFA.licenseUnixDISA STIG AIX 7.x v2r5
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication - powerscMFA.pam.baseUnixDISA STIG AIX 7.x v2r5
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication - powerscMFA.pam.fallbackUnixDISA STIG AIX 7.x v2r5
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication - powerscMFA.pam.pmfamapperUnixDISA STIG AIX 7.x v2r5
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication - powerscMFA.pam.usbsmartcardUnixDISA STIG AIX 7.x v2r5
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - ChallengeResponseAuthenticationUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - enforceSmartCardUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - PasswordAuthenticationUnixDISA STIG Apple Mac OSX 10.14 v2r6
Big Sur - Enforce multifactor authentication for network access to privileged accountsUnixNIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Enforce multifactor authentication for network access to privileged accountsUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r5 Low
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-171
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r4 Low
DKER-EE-002180 - SAML integration must be enabled in Docker Enterprise.UnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
JBOS-AS-000265 - The JBoss Server must be configured to use certificates to authenticate admins.UnixDISA RedHat JBoss EAP 6.3 STIG v2r3
Monterey - Enforce multifactor authentication for network access to privileged accountsUnixNIST macOS Monterey v1.0.0 - All Profiles
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICESUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICESWindowsDISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITESUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITESWindowsDISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATIONWindowsDISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATIONUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSIONUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSIONWindowsDISA STIG Oracle 11.2g v2r3 Windows
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICESWindowsDISA STIG Oracle 12c v2r4 Windows
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICESUnixDISA STIG Oracle 12c v2r4 Linux
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITESUnixDISA STIG Oracle 12c v2r4 Linux
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITESWindowsDISA STIG Oracle 12c v2r4 Windows
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATIONWindowsDISA STIG Oracle 12c v2r4 Windows
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATIONUnixDISA STIG Oracle 12c v2r4 Linux
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSIONUnixDISA STIG Oracle 12c v2r4 Linux
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSIONWindowsDISA STIG Oracle 12c v2r4 Windows
OL6-00-000349 - The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication.UnixDISA STIG Oracle Linux 6 v2r6
OL08-00-020250 - OL 8 must implement multifactor authentication for access to interactive accounts - pam_cert_authUnixDISA Oracle Linux 8 STIG v1r2
OL08-00-020250 - OL 8 must implement multifactor authentication for access to interactive accounts - pam_sss.soUnixDISA Oracle Linux 8 STIG v1r2
RHEL-06-000349 - The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication - ALT for authentication.UnixDISA Red Hat Enterprise Linux 6 STIG v2r2
RHEL-08-020250 - RHEL 8 must implement smart card logon for multifactor authentication for access to interactive accounts - pam_cert_authUnixDISA Red Hat Enterprise Linux 8 STIG v1r6
RHEL-08-020250 - RHEL 8 must implement smart card logon for multifactor authentication for access to interactive accounts - pam_sss.soUnixDISA Red Hat Enterprise Linux 8 STIG v1r6
SLES-12-030520 - The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM) - PAM.UnixDISA SLES 12 STIG v2r6
SLES-15-020030 - The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM) - PAM.UnixDISA SLES 15 STIG v1r6
TCAT-AS-000610 - JMX authentication must be secured.UnixDISA STIG Apache Tomcat Application Server 9 v2r4 Middleware
TCAT-AS-000610 - JMX authentication must be secured.UnixDISA STIG Apache Tomcat Application Server 9 v2r4
UBTU-16-030840 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-18-010427 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.UnixDISA STIG Ubuntu 18.04 LTS v2r8