CSCv7|5

Title

Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations and Servers

Reference Item Details

Category: Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations and Servers

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.7 Set 'aaa accounting' to log all privileged use commands using 'commands 15'CiscoCIS Cisco IOS 15 L2 v4.1.1
1.2.1 Ensure the container host has been HardenedUnixCIS Docker v1.5.0 L1 Linux Host OS
1.2.28 Ensure that the --service-account-key-file argument is set as appropriateUnixCIS Kubernetes Benchmark v1.6.1 L1 Master
3.2.8 Ensure that the --hostname-override argument is not setUnixCIS Google Kubernetes Engine (GKE) v1.3.0 L1 Node
4.2.8 Ensure that the --hostname-override argument is not setUnixCIS Kubernetes v1.20 Benchmark v1.0.1 L1 Worker
4.2.8 Ensure that the --hostname-override argument is not setUnixCIS Kubernetes v1.24 Benchmark v1.0.0 L1 Worker
4.2.8 Ensure that the --hostname-override argument is not setUnixCIS Kubernetes v1.23 Benchmark v1.0.1 L1 Worker
4.6.3 Apply Security Context to Your Pods and ContainersGCPCIS Google Kubernetes Engine (GKE) v1.3.0 L2
5.7.4 The default namespace should not be used - BuildConfigsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - BuildsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - CronJobsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - DaemonSetsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - DeploymentConfigsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - DeploymentsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - HorizontalPodAutoScalersOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - ImageStreamsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - JobsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - PodsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - ReplicaSetsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - ReplicationControllersOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - RoutesOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - ServicesOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
5.7.4 The default namespace should not be used - StatefulSetsOpenShiftCIS RedHat OpenShift Container Platform 4 v1.2.0 L2
7.2 iSight Camera Privacy and Confidentiality ConcernsUnixCIS Apple macOS 10.12 L2 v1.2.0
7.2 iSight Camera Privacy and Confidentiality ConcernsUnixCIS Apple macOS 10.13 L2 v1.1.0
7.3 Computer Name ConsiderationsUnixCIS Apple macOS 10.13 L2 v1.1.0
7.3 Computer Name ConsiderationsUnixCIS Apple macOS 10.12 L2 v1.2.0
7.7 Ensure devices lock after a period of inactivity to prevent unauthorized accessmicrosoft_azureCIS Microsoft 365 Foundations E3 L1 v1.5.0
7.8 Ensure that mobile device encryption is enabled to prevent unauthorized access to mobile datamicrosoft_azureCIS Microsoft 365 Foundations E3 L1 v1.5.0
7.9 Ensure that mobile devices require complex passwords (Type = Alphanumeric)microsoft_azureCIS Microsoft 365 Foundations E3 L1 v1.5.0
7.12 Siri on macOSUnixCIS Apple macOS 10.12 L1 v1.2.0