CSCv7|12.5

Title

Configure Monitoring Systems to Record Network Packets

Description

Configure monitoring systems to record network packets passing through the boundary at each of the organization's network boundaries.

Reference Item Details

Reference: CIS Critical Security Controls v7

Category: Boundary Defense

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 11 v2.0.0 L1 + BL + NG
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 11 v2.0.0 L1 + BL
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL + NG
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + BL
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 10 v2.0.0 L1 + NG
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 10 v2.0.0 L1
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 11 v2.0.0 L1 + NG
2.3.11.5 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Intune for Windows 11 v2.0.0 L1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + BL
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + BL + NG
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1 + NG
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Enterprise v2.0.0 L1 + BL
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2019 STIG MS L1 v1.0.1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Stand-alone v2.0.0 L1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Enterprise v2.0.0 L1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1 + BL + NG
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + NG
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 11 Stand-alone v2.0.0 L1 + BL
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1 + BL
2.3.11.8 Ensure 'Network security: LDAP client signing requirements' is set to 'Negotiate signing' or higher	Windows	CIS Microsoft Windows 10 EMS Gateway v2.0.0 L1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2019 STIG DC STIG v1.0.1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2016 STIG MS STIG v1.1.0
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1 + BL + NG
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + NG
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + BL + NG
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1 + BL
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v2.0.0 L1 + BL
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 EMS Gateway v2.0.0 L1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2016 STIG DC L1 v1.1.0
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2016 STIG MS L1 v1.1.0
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Stand-alone v2.0.0 L1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2019 STIG MS STIG v1.0.1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2016 STIG DC STIG v1.1.0
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Enterprise v2.0.0 L1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2019 STIG DC L1 v1.0.1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1 + BL
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Stand-alone v2.0.0 L1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows Server 2019 STIG MS L1 v1.0.1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 11 Stand-alone v2.0.0 L1 + BL
2.3.11.10 Ensure 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' is set to 'Require NTLMv2 session security, Require 128-bit encryption'	Windows	CIS Microsoft Windows 10 Enterprise v2.0.0 L1 + NG

Detections

Analytics

CSCv7|12.5

Title

Description

Reference Item Details

Audit Items