CCI|CCI-000765

Title

The information system implements multifactor authentication for network access to privileged accounts.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication.UnixDISA STIG AIX 7.x v2r9
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - ChallengeResponseAuthenticationUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - enforceSmartCardUnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-14-003020 - The macOS system must use multifactor authentication for local and network access to privileged and non-privileged accounts - PasswordAuthenticationUnixDISA STIG Apple Mac OSX 10.14 v2r6
Big Sur - Enforce multifactor authentication for network access to privileged accountsUnixNIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Enforce multifactor authentication for network access to privileged accountsUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - All Profiles
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r5 Low
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-171
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Enforce Smartcard AuthenticationUnixNIST macOS Catalina v1.5.0 - 800-53r4 Low
DKER-EE-002180 - SAML integration must be enabled in Docker Enterprise.UnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r1
JBOS-AS-000265 - The JBoss Server must be configured to use certificates to authenticate admins.UnixDISA RedHat JBoss EAP 6.3 STIG v2r3
Monterey - Enforce multifactor authentication for network access to privileged accountsUnixNIST macOS Monterey v1.0.0 - All Profiles
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICESWindowsDISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SQLNET.AUTHENTICATION_SERVICESUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITESUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CIPHER_SUITESWindowsDISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATIONWindowsDISA STIG Oracle 11.2g v2r3 Windows
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_CLIENT_AUTHENTICATIONUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSIONUnixDISA STIG Oracle 11.2g v2r3 Linux
O112-C2-012900 - The DBMS must use multifactor authentication for access to user accounts - SSL_VERSIONWindowsDISA STIG Oracle 11.2g v2r3 Windows
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts.UnixDISA STIG Oracle 12c v2r8 Linux
O121-C2-012900 - The DBMS must use multifactor authentication for access to user accounts.WindowsDISA STIG Oracle 12c v2r8 Windows
OL6-00-000349 - The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication.UnixDISA STIG Oracle Linux 6 v2r7
OL08-00-020250 - OL 8 must implement multifactor authentication for access to interactive accounts.UnixDISA Oracle Linux 8 STIG v1r8
RHEL-06-000349 - The system must be configured to require the use of a CAC, PIV compliant hardware token, or Alternate Logon Token (ALT) for authentication - ALT for authentication.UnixDISA Red Hat Enterprise Linux 6 STIG v2r2
RHEL-08-020250 - RHEL 8 must implement smart card logon for multifactor authentication for access to interactive accounts.UnixDISA Red Hat Enterprise Linux 8 STIG v1r13
RHEL-09-215075 - RHEL 9 must have the openssl-pkcs11 package installed.UnixDISA Red Hat Enterprise Linux 9 STIG v1r1
RHEL-09-255035 - RHEL 9 SSHD must accept public key authentication.UnixDISA Red Hat Enterprise Linux 9 STIG v1r1
RHEL-09-611165 - RHEL 9 must enable certificate based smart card authentication.UnixDISA Red Hat Enterprise Linux 9 STIG v1r1
SLES-12-030520 - The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).UnixDISA SLES 12 STIG v2r12
SLES-15-020030 - The SUSE operating system must implement multifactor authentication for access to privileged accounts via pluggable authentication modules (PAM).UnixDISA SLES 15 STIG v1r11
TCAT-AS-000610 - JMX authentication must be secured.UnixDISA STIG Apache Tomcat Application Server 9 v2r6 Middleware
TCAT-AS-000610 - JMX authentication must be secured.UnixDISA STIG Apache Tomcat Application Server 9 v2r6
UBTU-16-030840 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.UnixDISA STIG Ubuntu 16.04 LTS v2r3
UBTU-18-010427 - The Ubuntu operating system must implement smart card logins for multifactor authentication for access to accounts.UnixDISA STIG Ubuntu 18.04 LTS v2r12
UBTU-20-010033 - The Ubuntu operating system must implement smart card logins for multifactor authentication for local and network access to privileged and non-privileged accounts - libpam-pkcs11UnixDISA STIG Ubuntu 20.04 LTS v1r7
UBTU-20-010033 - The Ubuntu operating system must implement smart card logins for multifactor authentication for local and network access to privileged and non-privileged accounts - PubkeyAuthenticationUnixDISA STIG Ubuntu 20.04 LTS v1r7
UBTU-20-010033 - The Ubuntu operating system must implement smart card logins for multifactor authentication for local and network access to privileged and non-privileged accounts.UnixDISA STIG Ubuntu 20.04 LTS v1r10
VCSA-70-000060 - The vCenter Server must require multifactor authentication.VMwareDISA STIG VMware vSphere 7.0 vCenter v1r2
WBSP-AS-001030 - The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.UnixDISA IBM WebSphere Traditional 9 STIG v1r1
WBSP-AS-001030 - The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.WindowsDISA IBM WebSphere Traditional 9 Windows STIG v1r1
WBSP-AS-001030 - The WebSphere Application Server multifactor authentication for network access to privileged accounts must be used.UnixDISA IBM WebSphere Traditional 9 STIG v1r1 Middleware
WN10-SO-000251 - Windows 10 must use multifactor authentication for local and network access to privileged and nonprivileged accounts - ReadersWindowsDISA Windows 10 STIG v2r8
WN10-SO-000251 - Windows 10 must use multifactor authentication for local and network access to privileged and nonprivileged accounts - SmartCardsWindowsDISA Windows 10 STIG v2r8