CCI|CCI-000804

Title

The information system uniquely identifies and authenticates non-organizational users (or processes acting on behalf of non-organizational users).

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2009

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
4.020 - The built-in guest account is not disabled.	Windows	DISA Windows Vista STIG v6r41
AIX7-00-001009 - All accounts on AIX must be assigned unique User Identification Numbers (UIDs) and must authenticate organizational and non-organizational users (or processes acting on behalf of these users).	Unix	DISA STIG AIX 7.x v2r9
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 Low
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Big Sur v1.4.0 - 800-53r4 Low
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - 800-53r5 Low
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - 800-53r4 Low
Catalina - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Catalina v1.5.0 - All Profiles
EP11-00-005000 - The DBMS must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	PostgreSQLDB	EDB PostgreSQL Advanced Server v11 DB Audit v2r2
F5BI-AP-000087 - The BIG-IP APM module must be configured to uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users) when connecting to virtual servers.	F5	DISA F5 BIG-IP Access Policy Manager STIG v2r3
F5BI-LT-000087 - The BIG-IP Core implementation must be configured to uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users) when connecting to virtual servers.	F5	DISA F5 BIG-IP Local Traffic Manager STIG v2r3
JUSX-VN-000021 - The Juniper SRX Services Gateway VPN must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	Juniper	DISA Juniper SRX Services Gateway VPN v2r2
MADB-10-004500 - The MariaDB must uniquely identify and authenticate nonorganizational users (or processes acting on behalf of nonorganizational users).	MySQLDB	DISA MariaDB Enterprise 10.x v1r2 DB
MD3X-00-000390 - MongoDB must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	MongoDB	DISA STIG MongoDB Enterprise Advanced 3.x v2r1 DB
MD4X-00-003400 - MongoDB must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	MongoDB	DISA STIG MongoDB Enterprise Advanced 4.x v1r2 DB
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - 800-53r5 High
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - 800-53r5 Low
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - CNSSI 1253
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - 800-53r4 High
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - All Profiles
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - 800-53r4 Moderate
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - 800-53r4 Low
Monterey - Configure the System to Uniquely Identify and Authenticate Non-Organizational Users	Unix	NIST macOS Monterey v1.0.0 - 800-53r5 Moderate
MYS8-00-006300 - The MySQL Database Server 8.0 must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	MySQLDB	DISA Oracle MySQL 8.0 v1r4 DB
O112-P2-015800 - The DBMS must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	OracleDB	DISA STIG Oracle 11.2g v2r3 Database
O121-P2-015800 - The DBMS must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	OracleDB	DISA STIG Oracle 12c v2r8 Database
OL6-00-000296 - All accounts on the system must have unique user or account names.	Unix	DISA STIG Oracle Linux 6 v2r7
OL08-00-020240 - OL 8 duplicate User IDs (UIDs) must not exist for interactive users - UIDs must not exist for interactive users.	Unix	DISA Oracle Linux 8 STIG v1r8
PGS9-00-001400 - PostgreSQL must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	Unix	DISA STIG PostgreSQL 9.x on RHEL OS v2r3
RHEL-06-000296 - All accounts on the system must have unique user or account names	Unix	DISA Red Hat Enterprise Linux 6 STIG v2r2
SLES-12-010640 - The SUSE operating system must not have duplicate User IDs (UIDs) for interactive users.	Unix	DISA SLES 12 STIG v2r13
SLES-15-010230 - The SUSE operating system must not have duplicate User IDs (UIDs) for interactive users.	Unix	DISA SLES 15 STIG v1r12
SOL-11.1-070110 - Duplicate UIDs must not exist for multiple non-organizational users.	Unix	DISA STIG Solaris 11 X86 v2r9
SOL-11.1-070110 - Duplicate UIDs must not exist for multiple non-organizational users.	Unix	DISA STIG Solaris 11 SPARC v2r9
SP13-00-000080 - SharePoint must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	Windows	DISA STIG SharePoint 2013 v2r3
SQL2-00-018900 - SQL Server must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users) - or processes acting as non-organizational users.	MS_SQLDB	DISA STIG SQL Server 2012 DB Instance Security v1r20
SQL4-00-018900 - SQL Server must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users) - or processes acting on behalf of non-org users.	MS_SQLDB	DISA STIG SQL Server 2014 Instance DB Audit v2r3
SQL6-D0-008800 - SQL Server must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).	MS_SQLDB	DISA STIG SQL Server 2016 Instance DB Audit v2r11
UBTU-16-010660 - Duplicate User IDs (UIDs) must not exist for interactive users.	Unix	DISA STIG Ubuntu 16.04 LTS v2r3
UBTU-18-010444 - The Ubuntu operating system must uniquely identify interactive users.	Unix	DISA STIG Ubuntu 18.04 LTS v2r13

Detections

Analytics

CCI|CCI-000804

Title

Reference Item Details

Audit Items