CCI|CCI-001814

Title

The Information system supports auditing of the enforcement actions.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.4.4 Ensure boot loader does not allow removable mediaUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.6.1.10 Ensure system device files are labeled - device_tUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.6.1.10 Ensure system device files are labeled - unlabeled_tUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
2.2.21 Ensure the TFTP server has not been installed - TFTP server package installed if not required for operational support.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.30 Ensure SSH does not permit GSSAPI - GSSAPI authentication unless needed.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.31 Ensure SSH does not permit Kerberos authenticationUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.9 Ensure local interactive user accounts umask is 077UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v2r6
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v2r5
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v2r1
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v2r3
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v2r8
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v2r9
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v2r6
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v2r8
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v2r1
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v2r3
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v2r5
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v2r3
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v2r6
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v2r9
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v2r8
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v2r1
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v2r5
AOSX-09-002110 - The operating system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.9 v1r2
AOSX-10-002110 - The operating system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.10 v1r5
AOSX-11-002110 - The operating system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.11 v1r6
AOSX-12-002110 - The OS X system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.12 v1r6
AOSX-13-002110 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-13-002110 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.13 v2r3
AOSX-13-002110 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.13 v2r1
AOSX-14-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.14 v2r4
AOSX-14-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.14 v2r1
AOSX-14-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.14 v2r5
AOSX-14-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.15 v1r10
AOSX-15-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.15 v1r5
AOSX-15-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.15 v1r3
AOSX-15-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.15 v1r8
AOSX-15-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.15 v1r7
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r3
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r5
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r6
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r7
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r8
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r1
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fmUnixDISA STIG Apple macOS 11 v1r1
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fmUnixDISA STIG Apple macOS 11 v1r6