CCI|CCI-001744

Title

Implement organization-defined security responses automatically if baseline configurations are changed in an unauthorized manner.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.3.1 Ensure AIDE is installedUnixCIS Amazon Linux 2 STIG v2.0.1 L1 Server
1.3.1 Ensure AIDE is installedUnixCIS Amazon Linux 2 STIG v2.0.1 STIG
1.3.1 Ensure AIDE is installedUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.2 Ensure filesystem integrity is regularly checkedUnixCIS Amazon Linux 2 STIG v2.0.1 STIG
1.3.2 Ensure filesystem integrity is regularly checkedUnixCIS Amazon Linux 2 STIG v2.0.1 L1 Server
1.3.2 Ensure filesystem integrity is regularly checked - aideUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.2 Ensure filesystem integrity is regularly checked - cronUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.3.2 Ensure filesystem integrity is regularly checked - mailUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8 PHTN-40-000016UnixCIS VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v1.0.0 CAT II
1.9 UBTU-24-100130UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.22 WN16-00-000240WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 DC CAT II
1.22 WN16-00-000240WindowsCIS Microsoft Windows Server 2016 STIG v4.0.0 MS CAT II
1.22 WN19-00-000220WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT II
1.22 WN19-00-000220WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT II
1.22 WN22-00-000220WindowsCIS Microsoft Windows Server 2022 STIG v3.0.0 MS CAT II
1.22 WN22-00-000220WindowsCIS Microsoft Windows Server 2022 STIG v3.0.0 DC CAT II
1.23 VCSA-80-000150VMwareCIS VMware vSphere 8.0 vCenter STIG v1.0.0 CAT II
1.26 RHEL-10-200520UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.31 AZLX-23-001060UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.32 AZLX-23-001065UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.38 AZLX-23-001095UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.49 SOL-11.1-020190UnixCIS Solaris 11 X86 STIG v1.0.0 CAT II
1.49 SOL-11.1-020190UnixCIS Solaris 11 SPARC STIG v1.0.0 CAT II
1.51 SLES-15-010418UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.52 RHEL-10-200633UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.53 SLES-15-010420UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.55 OL08-00-010358UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.57 ALMA-09-009260UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.57 OL08-00-010360UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.61 OL09-00-000290UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.62 OL09-00-000300UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.63 OL09-00-000301UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.66 RHEL-09-215095UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.99 PHTN-40-000237UnixCIS VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v1.0.0 CAT II
1.113 UBTU-22-651020UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.181 AZLX-23-002570UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.348 ALMA-09-045340UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.349 ALMA-09-045450UnixCIS Cloud Linux AlmaLinux OS 9 STIG v1.0.0 CAT II
1.351 RHEL-09-651010UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.352 RHEL-09-651015UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
ALMA-09-009260 - AlmaLinux OS 9 must have the s-nail package installed.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-045340 - AlmaLinux OS 9 must have the Advanced Intrusion Detection Environment (AIDE) package installed.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-045450 - AlmaLinux OS 9 must routinely check the baseline configuration for unauthorized changes and notify the system administrator when anomalies in the operation of any security functions are discovered.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
AZLX-23-001060 - Amazon Linux 2023 must have the Advanced Intrusion Detection Environment (AIDE) package installed.UnixDISA Amazon Linux 2023 STIG v1r3
AZLX-23-001065 - Amazon Linux 2023 must routinely check the baseline configuration for unauthorized changes and notify the system administrator (SA) when anomalies in the operation of any security functions are discovered.UnixDISA Amazon Linux 2023 STIG v1r3
AZLX-23-001095 - Amazon Linux 2023 must have the s-nail package installed.UnixDISA Amazon Linux 2023 STIG v1r3
Big Sur - Configure the System to Notify upon Baseline Configuration ChangesUnixNIST macOS Big Sur v1.4.0 - All Profiles
Catalina - Configure the System to Notify upon Baseline Configuration ChangesUnixNIST macOS Catalina v1.5.0 - All Profiles
F5BI-DM-000211 - The BIG-IP appliance must be configured to implement automated security responses if baseline configurations are changed in an unauthorized manner.F5DISA F5 BIG-IP Device Management STIG v2r4
GEN000140 - A file integrity baseline must be created and maintained.UnixDISA STIG Solaris 10 X86 v2r4