CCI|CCI-000778

Title

The information system uniquely identifies an organization-defined list of specific and/or types of devices before establishing a local, remote, or network connection.

Reference Item Details

Category: 2009

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.27 Disable AutomountingUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.28 Disable USB Storage - /bin/trueUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.28 Disable USB Storage - blacklistUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount-openUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount-open=falseUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount=falseUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - autorun-neverUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - autorun-never=trueUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-001025 - AIX must configure the ttys value for all interactive users - ALL usersUnixDISA STIG AIX 7.x v2r5
AIX7-00-001025 - AIX must configure the ttys value for all interactive users - default userUnixDISA STIG AIX 7.x v2r5
AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa auth dot1x default groupAristaDISA STIG Arista MLS DCS-7000 Series L2S v1r2
AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x system-auth-controlAristaDISA STIG Arista MLS DCS-7000 Series L2S v1r2
BIND-9X-001106 - The BIND 9.x server implementation must utilize separate TSIG key-pairs when securing server-to-server transactions - keyUnixDISA BIND 9.x STIG v2r2
BIND-9X-001106 - The BIND 9.x server implementation must utilize separate TSIG key-pairs when securing server-to-server transactions - zone keysUnixDISA BIND 9.x STIG v2r2
CASA-VN-000310 - The Cisco ASA VPN gateway must be configured to identify all peers before establishing a connection - ipsec-121CiscoDISA STIG Cisco ASA VPN v1r1
CASA-VN-000310 - The Cisco ASA VPN gateway must be configured to identify all peers before establishing a connection - local-authenticationCiscoDISA STIG Cisco ASA VPN v1r1
CASA-VN-000310 - The Cisco ASA VPN gateway must be configured to identify all peers before establishing a connection - remote-authenticationCiscoDISA STIG Cisco ASA VPN v1r1
Catalina - The macOS system must uniquely identify peripherals before establishing a connection.UnixNIST macOS Catalina v1.5.0 - All Profiles
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa authenticationCiscoDISA STIG Cisco IOS Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa authenticationCiscoDISA STIG Cisco IOS XE Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa authenticationCiscoDISA STIG Cisco NX-OS Switch L2S v2r1
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa groupCiscoDISA STIG Cisco NX-OS Switch L2S v2r1
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa groupCiscoDISA STIG Cisco IOS Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa groupCiscoDISA STIG Cisco IOS XE Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa new-modelCiscoDISA STIG Cisco IOS XE Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa new-modelCiscoDISA STIG Cisco IOS Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x port-control autoCiscoDISA STIG Cisco NX-OS Switch L2S v2r1
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x system-auth-controlCiscoDISA STIG Cisco IOS Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x system-auth-controlCiscoDISA STIG Cisco IOS XE Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - interface dot1xCiscoDISA STIG Cisco IOS Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - interface dot1xCiscoDISA STIG Cisco IOS XE Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - interface dot1xCiscoDISA STIG Cisco NX-OS Switch L2S v2r1
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - radius serverCiscoDISA STIG Cisco IOS Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - radius serverCiscoDISA STIG Cisco IOS XE Switch L2S v2r2
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection - radius serverCiscoDISA STIG Cisco NX-OS Switch L2S v2r1
JBOS-AS-000285 - The JBoss server must be configured to bind the management interfaces to only management networks.UnixDISA RedHat JBoss EAP 6.3 STIG v2r3
OL6-00-000503 - The operating system must enforce requirements for the connection of mobile devices to operating systems.UnixDISA STIG Oracle Linux 6 v2r6
OL07-00-020100 - The Oracle Linux operating system must be configured to disable USB mass storage - blacklistUnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020110 - The Oracle Linux operating system must disable the file system automounter unless required.UnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - automountUnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - autorun-neverUnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks automountUnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks automount-openUnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks autorun-neverUnixDISA Oracle Linux 7 STIG v2r7
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required.UnixDISA Oracle Linux 7 STIG v2r7
OL08-00-040070 - The OL 8 file system automounter must be disabled unless required.UnixDISA Oracle Linux 8 STIG v1r2
OL08-00-040080 - OL 8 must be configured to disable the ability to use USB mass storage devices - blacklist usb-storageUnixDISA Oracle Linux 8 STIG v1r2
OL08-00-040080 - OL 8 must be configured to disable the ability to use USB mass storage devices - install usb-storage /bin/trueUnixDISA Oracle Linux 8 STIG v1r2
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - appletalkUnixDISA STIG VMware vSphere 6.7 Photon OS v1r3