CCI|CCI-002130

Title

The information system automatically audits account enabling actions.

Reference Item Details

Category: 2013

Audit Items

View all Reference Audit Items

NamePluginAudit Name
4.1.3.14 Ensure events that modify user/group information are collected - groupUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
4.1.3.14 Ensure events that modify user/group information are collected - gshadowUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
4.1.3.14 Ensure events that modify user/group information are collected - opasswdUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
4.1.3.14 Ensure events that modify user/group information are collected - passwdUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
4.1.3.14 Ensure events that modify user/group information are collected - shadowUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/groupUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/audit/configUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/environUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/groupUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/limitsUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/login.cfgUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/passwd readUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/passwd writeUnixDISA STIG AIX 7.x v2r6
AIX7-00-002016 - AIX must provide audit record generation functionality for DoD-defined auditable events - /etc/security/userUnixDISA STIG AIX 7.x v2r6
APPL-12-001003 - The macOS system must initiate session audits at system startupUnixDISA STIG Apple macOS 12 v1r3
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Low
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Enable Security AuditingUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Low
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-53r5 Low
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-53r5 Moderate
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-171
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-53r4 Low
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Enable Security AuditingUnixNIST macOS Catalina v1.5.0 - All Profiles
CISC-ND-000880 - The Cisco router must be configured to automatically audit account enabling actions.CiscoDISA STIG Cisco IOS XE Router NDM v2r5
CISC-ND-000880 - The Cisco router must be configured to automatically audit account enabling actions.CiscoDISA STIG Cisco IOS Router NDM v2r4
CISC-ND-000880 - The Cisco switch must be configured to automatically audit account enabling actions - aaa accounting default groupCiscoDISA STIG Cisco NX-OS Switch NDM v2r3
CISC-ND-000880 - The Cisco switch must be configured to automatically audit account enabling actions - serversCiscoDISA STIG Cisco NX-OS Switch NDM v2r3
CISC-ND-000880 - The Cisco switch must be configured to automatically audit account enabling actions.CiscoDISA STIG Cisco IOS XE Switch NDM v2r3
CISC-ND-000880 - The Cisco switch must be configured to automatically audit account enabling actions.CiscoDISA STIG Cisco IOS Switch NDM v2r4
F5BI-DM-000171 - The BIG-IP appliance must be configured to automatically audit account-enabling actions.F5DISA F5 BIG-IP Device Management 11.x STIG v2r1
JUNI-ND-000870 - The Juniper router must be configured to automatically audit account enabling actions.JuniperDISA STIG Juniper Router NDM v2r1
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-53r4 Low
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-53r5 Moderate
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-53r4 Moderate
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - CNSSI 1253
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-53r5 High
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-53r4 High
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - All Profiles
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-53r5 Low
Monterey - Enable Security AuditingUnixNIST macOS Monterey v1.0.0 - 800-171