CSCv6|16.1

Title

Review all system accounts and disable any account that cannot be associated with a business process and owner.

Description

Review all system accounts and disable any account that cannot be associated with a business process and owner.

Reference Item Details

Category: Account Monitoring and Control

Family: Application

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.2.25 Set 'Audit Policy: Logon-Logoff: Logoff' to 'Success'WindowsCIS Windows 8 L1 v1.0.0
1.1.2.36 Set 'Audit Policy: Logon-Logoff: Other Logon/Logoff Events' to 'No Auditing'WindowsCIS Windows 8 L1 v1.0.0
1.1.2.50 Set 'Audit Policy: Logon-Logoff: Logon' to 'Success and Failure'WindowsCIS Windows 8 L1 v1.0.0
1.1.3.1.2 Configure 'Accounts: Rename guest account'WindowsCIS Windows 8 L1 v1.0.0
1.1.3.1.5 Set 'Accounts: Guest account status' to 'Disabled'WindowsCIS Windows 8 L1 v1.0.0
1.2.4.2.2.15 Set 'Require additional authentication at startup' to 'Enabled'WindowsCIS Windows 8 L1 v1.0.0
2.3.1.2 Ensure 'Accounts: Guest account status' is set to 'Disabled'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
2.3.1.2 Ensure 'Accounts: Guest account status' is set to 'Disabled'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
2.3.1.3 (L1) Ensure 'Accounts: Guest account status' is set to 'Disabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
2.3.1.5 Configure 'Accounts: Rename guest account'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
2.3.1.5 Configure 'Accounts: Rename guest account'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
3.5 Review User-Defined RolesMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.5 Review User-Defined RolesMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - clusterAdminMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - clusterAdminMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - dbAdminAnyDatabaseMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - dbAdminAnyDatabaseMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - dbOwnerMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - dbOwnerMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - hostManagerMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - hostManagerMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - readWriteAnyDatabaseMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - readWriteAnyDatabaseMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - userAdminMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - userAdminMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - userAdminAnyDatabaseMongoDBCIS MongoDB 3.2 Database Audit L2 v1.0.0
3.6 Review Superuser/Admin Roles - userAdminAnyDatabaseMongoDBCIS MongoDB 3.4 Database Audit L2 v1.0.0
5.3.1 Ensure password creation requirements are configured - 'dcredit'UnixCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
5.3.1 Ensure password creation requirements are configured - 'dcredit'UnixCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
5.3.1 Ensure password creation requirements are configured - 'lcredit'UnixCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
5.3.1 Ensure password creation requirements are configured - 'lcredit'UnixCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
5.3.1 Ensure password creation requirements are configured - 'minlen'UnixCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
5.3.1 Ensure password creation requirements are configured - 'minlen'UnixCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
5.3.1 Ensure password creation requirements are configured - 'ocredit'UnixCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
10.5 Lock Inactive User AccountsUnixCIS Debian Linux 7 L1 v1.0.0
10.5 Lock Inactive User AccountsUnixCIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0
17.5.2 (L1) Ensure 'Audit Logoff' is set to include 'Success'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
17.5.2 Ensure 'Audit Logoff' is set to include 'Success'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
17.5.2 Ensure 'Audit Logoff' is set to include 'Success'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
17.5.3 (L1) Ensure 'Audit Logon' is set to 'Success and Failure'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
17.5.3 Ensure 'Audit Logon' is set to 'Success and Failure'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
17.5.3 Ensure 'Audit Logon' is set to 'Success and Failure'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
17.5.4 (L1) Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
17.5.4 Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
17.5.4 Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'WindowsCIS Windows 7 Workstation Level 1 v3.2.0
18.9.11.2.11 Ensure 'Require additional authentication at startup' is set to 'Enabled'WindowsCIS Windows 7 Workstation Level 2 + Bitlocker v3.2.0
18.9.11.2.11 Ensure 'Require additional authentication at startup' is set to 'Enabled'WindowsCIS Windows 7 Workstation Bitlocker v3.2.0
18.9.11.2.11 Ensure 'Require additional authentication at startup' is set to 'Enabled'WindowsCIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0
18.9.11.2.17 (BL) Ensure 'Require additional authentication at startup' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L2 Bitlocker
18.9.11.2.17 (BL) Ensure 'Require additional authentication at startup' is set to 'Enabled'WindowsCIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker