CSCv7|16.9

Title

Disable Dormant Accounts

Description

Automatically disable dormant accounts after a set period of inactivity.

Reference Item Details

Reference: CIS Critical Security Controls v7

Category: Account Monitoring and Control

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.4.1.3 Ensure known default accounts do not exist	Cisco	CIS Cisco ASA 9.x Firewall L1 v1.1.0
1.12 Ensure credentials unused for 45 days or greater are disabled	amazon_aws	CIS Amazon Web Services Foundations L1 1.4.0
1.12 Ensure credentials unused for 45 days or greater are disabled	amazon_aws	CIS Amazon Web Services Foundations L1 2.0.0
1.12 Ensure credentials unused for 45 days or greater are disabled	amazon_aws	CIS Amazon Web Services Foundations L1 3.0.0
1.12 Ensure credentials unused for 45 days or greater are disabled	amazon_aws	CIS Amazon Web Services Foundations L1 1.5.0
1.12 Ensure credentials unused for 90 days or greater are disabled	amazon_aws	CIS Amazon Web Services Foundations L1 1.3.0
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1 Bitlocker
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1
17.1.1 (L1) Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Windows Server 2012 DC L1 v2.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG NG MS L3 v1.0.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.1 L1
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG MS L1 v1.0.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.3.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Windows Server 2012 R2 DC L1 v2.4.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG DC L1 v1.0.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG NG DC L3 v1.0.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Windows Server 2012 MS L1 v2.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 MS L1 v1.2.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 MS L1 v1.3.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Windows Server 2012 R2 MS L1 v2.4.0
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 10 Enterprise (Release 2004) v1.9.1 L1
17.1.1 Ensure 'Audit Credential Validation' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.2.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG NG DC L3 v1.0.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.2.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Windows Server 2012 R2 DC L1 v2.4.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.3.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Windows Server 2012 DC L1 v2.2.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2016 STIG DC L1 v1.0.0
17.1.2 Ensure 'Audit Kerberos Authentication Service' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.2.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG NG DC L3 v1.0.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2016 STIG DC L1 v1.0.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.2.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Windows Server 2012 DC L1 v2.2.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2016 DC L1 v1.3.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Windows Server 2012 R2 DC L1 v2.4.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2008 R2 Domain Controller Level 1 v3.2.0
17.1.3 Ensure 'Audit Kerberos Service Ticket Operations' is set to 'Success and Failure' (DC Only)	Windows	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.2.0
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1 Bitlocker
17.2.1 (L1) Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
17.2.1 Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Windows Server 2012 DC L1 v2.2.0
17.2.1 Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Windows Server 2012 MS L1 v2.2.0
17.2.1 Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2016 STIG DC L1 v1.0.0
17.2.1 Ensure 'Audit Application Group Management' is set to 'Success and Failure'	Windows	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.2.0

Detections

Analytics

CSCv7|16.9

Title

Description

Reference Item Details

Audit Items