1.1.2 Install and configure HP-UX Secure Shell 'PermitRootLogin=no' | CIS HP-UX 11i v1.5 | Unix | ACCESS CONTROL |
1.2 Enable SSH (PermitRootLogin) | CIS FreeBSD v1.0.5 | Unix | ACCESS CONTROL |
1.2.3.4.3 Configure 'Customize Warning Messages' | CIS Windows 8 L1 v1.0.0 | Windows | ACCESS CONTROL |
1.4.14.8 Secure Remote Login 'PermitRootLogin' | CIS Apple OSX 10.6 Snow Leopard L2 v1.0.0 | Unix | ACCESS CONTROL |
1.9 Management plane protection | CIS Cisco IOS XR 7.x v1.0.0 L2 | Cisco | ACCESS CONTROL |
1.12.5 Solicited Remote Assistance | CIS Windows 2008 Enterprise v1.2.0 | Windows | ACCESS CONTROL |
2.1.1 Ensure 'SECURE_CONTROL_<listener_name>' Is Set In 'listener.ora' | CIS Oracle Server 11g R2 Windows v2.1.0 | Windows | ACCESS CONTROL |
2.2.34 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account, Enterprise Admins Group, and Domain Admins Group' (STIG MS only) | CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS | Windows | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple macOS 10.13 L1 v1.1.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple OSX 10.11 El Capitan L1 v1.0.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple OSX 10.10 Yosemite L1 v1.1.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple macOS 10.13 L1 v1.0.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple OSX 10.9 Mavericks L1 v1.0.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple macOS 10.12 L1 v1.2.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple OSX 10.9 L1 v1.3.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple macOS 10.12 L1 v1.1.0 | Unix | ACCESS CONTROL |
2.4.5 Disable Remote Login | CIS Apple OSX 10.11 El Capitan L1 v1.1.0 | Unix | ACCESS CONTROL |
3.1 - Domain wide administration port is not enabled | TNS Oracle WebLogic Server 11 Windows Best Practices | Windows | ACCESS CONTROL |
3.1 - Domain wide administration port is not enabled | TNS Oracle WebLogic Server 11 Linux Best Practices | Unix | ACCESS CONTROL |
3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled' | AirWatch - CIS Apple iOS 17 Institution Owned L1 | MDM | ACCESS CONTROL |
3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled' | MobileIron - CIS Apple iPadOS 17 Institutionally Owned L1 | MDM | ACCESS CONTROL |
3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled' | MobileIron - CIS Apple iOS 17 Institution Owned L1 | MDM | ACCESS CONTROL |
3.2.1.16 Ensure 'Allow adding VPN configurations' is set to 'Disabled' | AirWatch - CIS Apple iPadOS 17 Institutionally Owned L1 | MDM | ACCESS CONTROL |
3.3 - Connection Filtering is not configured - Connection Filter Specified | TNS Oracle WebLogic Server 11 Windows Best Practices | Windows | ACCESS CONTROL |
3.3 - Connection Filtering is not configured - Connection Filter Specified | TNS Oracle WebLogic Server 11 Linux Best Practices | Unix | ACCESS CONTROL |
3.3 - Connection Filtering is not configured - Filter Rules added | TNS Oracle WebLogic Server 11 Windows Best Practices | Windows | ACCESS CONTROL |
3.3 - Connection Filtering is not configured - Filter Rules added | TNS Oracle WebLogic Server 11 Linux Best Practices | Unix | ACCESS CONTROL |
4.04 init.ora - 'remote_os_authent = FALSE' | CIS Oracle 9/10 OS Audit L1 v2.01 | Unix | ACCESS CONTROL |
4.22 sqlnet.ora - 'tcp.validnode_checking = YES' | CIS Oracle 9/10 OS Audit L2 v2.01 | Unix | ACCESS CONTROL |
4.28 init.ora - 'remote_login_passwordfile = NONE' | CIS Oracle 9 10 Windows Level2 v2.01 | Windows | ACCESS CONTROL |
4.28 init.ora - 'remote_login_passwordfile = NONE' | CIS Oracle 9/10 OS Audit L2 v2.01 | Unix | ACCESS CONTROL |
5.2.8 Ensure SSH root login is disabled | CIS SUSE Linux Enterprise Server 11 L1 v2.0.0 | Unix | ACCESS CONTROL |
5.2.8 Ensure SSH root login is disabled | CIS SUSE Linux Enterprise Workstation 12 L1 v2.1.0 | Unix | ACCESS CONTROL |
5.2.8 Ensure SSH root login is disabled | CIS Amazon Linux v2.0.0 L1 | Unix | ACCESS CONTROL |
5.2.8 Ensure SSH root login is disabled | CIS SUSE Linux Enterprise Workstation 11 L1 v2.0.0 | Unix | ACCESS CONTROL |
5.2.8 Ensure SSH root login is disabled | CIS Ubuntu Linux 14.04 LTS Server L1 v2.0.0 | Unix | ACCESS CONTROL |
5.2.8 Ensure SSH root login is disabled | CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.0.0 | Unix | ACCESS CONTROL |
5.03 OAS - 'Encryption Type - sqlnet.encryption_client = (ACCEPTED|REQUESTED|REQUIRED)' | CIS Oracle 9/10 OS Audit L2 v2.01 | Unix | ACCESS CONTROL |
5.17 OAS - 'SSL Cipher Suite - Set SSL Cipher Suite. ssl_cipher_suites = SSL_RSA_WITH_3DES_EDE_CBC_SHA' | CIS Oracle 9/10 OS Audit L2 v2.01 | Unix | ACCESS CONTROL |
6.1.9 Disable SSH root Login - Check if PermitRootLogin is set to no and not commented for the server. | CIS Solaris 10 v5.2 | Unix | ACCESS CONTROL |
9.3.8 Disable SSH Root Login | CIS Debian Linux 7 L1 v1.0.0 | Unix | ACCESS CONTROL |
18.9.97.2.2 Ensure 'Allow remote server management through WinRM' is set to 'Disabled' | CIS Windows 7 Workstation Level 2 v3.2.0 | Windows | ACCESS CONTROL |
Fortigate - Admin access - trusted hosts | TNS Fortigate FortiOS Best Practices v2.0.0 | FortiGate | ACCESS CONTROL |
Fortigate - Admin access - trusted hosts | TNS Fortigate FortiOS Best Practices | FortiGate | ACCESS CONTROL |
PCI 2.2.4 - Verify that common security parameter settings are included - CDE - 'remote GUI login disabled' | PCI DSS 2.0/3.0 - AIX | Unix | ACCESS CONTROL |
PCI 2.2.4 Configure system security parameters to prevent misuse - Configure SSH (/etc/ssh/sshd_config PermitRootLogin) | PCI DSS 2.0/3.0 - Solaris 10 | Unix | ACCESS CONTROL |
WG230 - Web server administration will be performed over a secure path or at the console. - 'UserAuthentication - Enabled (registry check)' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | ACCESS CONTROL |
WG230 - Web server administration will be performed over a secure path or at the console. 'Allowed Terminal Desktop Users (Group Members)' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | ACCESS CONTROL |
WG310 - A Private web server responds to requests from public search engines. - 'IP address and domain name restrictions' | DISA STIG IIS 6.0 Site Checklist v6r1 | Windows | ACCESS CONTROL |