Detections
Analytics

CSCv7|16.1

Title

Maintain an Inventory of Authentication Systems

Description

Maintain an inventory of each of the organization's authentication systems, including those located onsite or at a remote service provider.

Reference Item Details

Category: Account Monitoring and Control

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.3 Ensure security questions are registered in the AWS accountamazon_awsCIS Amazon Web Services Foundations v4.0.1 L1
1.8 Ensure IAM password policy requires minimum length of 14 or greateramazon_awsCIS Amazon Web Services Foundations v4.0.1 L1
1.11 Do not create access keys during initial setup for IAM users with a console passwordamazon_awsCIS Amazon Web Services Foundations v4.0.1 L1
1.13 Ensure there is only one active access key for any single IAM useramazon_awsCIS Amazon Web Services Foundations v4.0.1 L1
1.14 Ensure access keys are rotated every 90 days or lessamazon_awsCIS Amazon Web Services Foundations v4.0.1 L1
1.15 Ensure IAM users receive permissions only through groupsamazon_awsCIS Amazon Web Services Foundations v4.0.1 L1
2.1 Ensure Only Necessary Authentication and Authorization Modules Are EnabledUnixCIS Apache HTTP Server 2.4 v2.2.0 L1
2.1 Ensure Only Necessary Authentication and Authorization Modules Are EnabledUnixCIS Apache HTTP Server 2.2 L1 v3.6.0 Middleware
2.1 Ensure Only Necessary Authentication and Authorization Modules Are Enabled - 'auth*'UnixCIS Apache HTTP Server 2.2 L2 v3.6.0
2.1 Ensure Only Necessary Authentication and Authorization Modules Are Enabled - 'auth*'UnixCIS Apache HTTP Server 2.2 L1 v3.6.0
2.1 Ensure Only Necessary Authentication and Authorization Modules Are Enabled - 'LDAP'UnixCIS Apache HTTP Server 2.2 L2 v3.6.0
2.1 Ensure Only Necessary Authentication and Authorization Modules Are Enabled - 'Loaded ldap* modules'UnixCIS Apache HTTP Server 2.2 L1 v3.6.0
2.13 Ensure Cloud Asset Inventory Is EnabledGCPCIS Google Cloud Platform v3.0.0 L1
4.9 Ensure AWS Config configuration changes are monitoredamazon_awsCIS Amazon Web Services Foundations v4.0.1 L2
8.3.2 (L1) Ensure use of the VM console is limitedVMwareCIS VMware ESXi 7.0 v1.4.0 L1
8.3.2 Ensure use of the VM console is limitedVMwareCIS VMware ESXi 6.5 v1.0.0 Level 1
8.3.2 Ensure use of the VM console is limitedVMwareCIS VMware ESXi 6.7 v1.3.0 Level 1