CSCv7|12.5

Title

Configure Monitoring Systems to Record Network Packets

Description

Configure monitoring systems to record network packets passing through the boundary at each of the organization's network boundaries.

Reference Item Details

Reference: CIS Critical Security Controls v7

Category: Boundary Defense

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL
2.3.11.8 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
2.3.11.9 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L1
2.3.11.9 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker
2.3.11.9 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker
2.3.11.9 (L1) Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L2
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG
2.3.11.9 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L1
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L2
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
2.3.11.10 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1
2.3.11.11 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L2
2.3.11.11 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L1 BitLocker
2.3.11.11 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L2 BitLocker
2.3.11.11 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v4.0.0 L1
3.4 Ensure logging is enabled on all firewall policies	FortiGate	CIS Fortigate 7.0.x v1.3.0 L1
3.7 Ensure VPC flow logging is enabled in all VPCs	amazon_aws	CIS Amazon Web Services Foundations v4.0.1 L2
45.26 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLM and 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 11 v3.0.1 L1
45.26 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLM and 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 10 v3.0.1 L1
45.27 (L1) Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLM and 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 10 v3.0.1 L1

Detections

Analytics

CSCv7|12.5

Title

Description

Reference Item Details

Audit Items