Item Search

NameAudit NamePluginCategory
AIX7-00-001007 - If AIX is using LDAP for authentication or account information, the /etc/ldap.conf file (or equivalent) must not contain passwords.DISA STIG AIX 7.x v3r1Unix

IDENTIFICATION AND AUTHENTICATION

AIX7-00-003101 - The AIX system must have no .netrc files on the system.DISA STIG AIX 7.x v3r1Unix

IDENTIFICATION AND AUTHENTICATION

CD12-00-009500 - If passwords are used for authentication, PostgreSQL must store only hashed, salted representations of passwords.DISA STIG Crunchy Data PostgreSQL DB v3r1PostgreSQLDB

IDENTIFICATION AND AUTHENTICATION

CISC-ND-000620 - The Cisco router must only store cryptographic representations of passwords.DISA STIG Cisco IOS Router NDM v3r1Cisco

IDENTIFICATION AND AUTHENTICATION

CISC-ND-000620 - The Cisco router must only store cryptographic representations of passwords.DISA STIG Cisco IOS XE Router NDM v3r1Cisco

IDENTIFICATION AND AUTHENTICATION

CISC-ND-000620 - The Cisco switch must only store cryptographic representations of passwords.DISA STIG Cisco IOS Switch NDM v3r1Cisco

IDENTIFICATION AND AUTHENTICATION

CISC-ND-000620 - The Cisco switch must only store cryptographic representations of passwords.DISA STIG Cisco IOS XE Switch NDM v3r2Cisco

IDENTIFICATION AND AUTHENTICATION

CNTR-K8-001160 - Secrets in Kubernetes must not be stored as environment variables.DISA STIG Kubernetes v2r2Unix

IDENTIFICATION AND AUTHENTICATION

CNTR-R2-000800 Rancher RKE2 must store only cryptographic representations of passwords.DISA Rancher Government Solutions RKE2 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

EPAS-00-004300 - If passwords are used for authentication, the EDB Postgres Advanced Server must store only hashed, salted representations of passwords.EnterpriseDB PostgreSQL Advanced Server DB v2r1PostgreSQLDB

IDENTIFICATION AND AUTHENTICATION

JUEX-NM-000330 - The Juniper EX switch must be configured to only store cryptographic representations of passwords.DISA Juniper EX Series Network Device Management v2r1Juniper

IDENTIFICATION AND AUTHENTICATION

MADB-10-003800 - If passwords are used for authentication, MariaDB must store only hashed, salted representations of passwords.DISA MariaDB Enterprise 10.x v2r1 DBMySQLDB

IDENTIFICATION AND AUTHENTICATION

MYS8-00-005100 - If passwords are used for authentication, the MySQL Database Server 8.0 must store only hashed, salted representations of passwords.DISA Oracle MySQL 8.0 v2r2 DBMySQLDB

IDENTIFICATION AND AUTHENTICATION

O112-C2-014600 - The DBMS must support organizational requirements to enforce password encryption for storage.DISA STIG Oracle 11.2g v2r5 LinuxUnix

IDENTIFICATION AND AUTHENTICATION

O112-C2-014600 - The DBMS must support organizational requirements to enforce password encryption for storage.DISA STIG Oracle 11.2g v2r5 WindowsWindows

IDENTIFICATION AND AUTHENTICATION

O121-C2-014600 - The DBMS must support organizational requirements to enforce password encryption for storage.DISA STIG Oracle 12c v3r1 LinuxUnix

IDENTIFICATION AND AUTHENTICATION

O121-C2-014600 - The DBMS must support organizational requirements to enforce password encryption for storage.DISA STIG Oracle 12c v3r1 WindowsWindows

IDENTIFICATION AND AUTHENTICATION

OL08-00-010110 - OL 8 must encrypt all stored passwords with a FIPS 140-2 approved cryptographic hashing algorithm.DISA Oracle Linux 8 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

OL08-00-010120 - OL 8 must employ FIPS 140-2 approved cryptographic hashing algorithms for all stored passwords.DISA Oracle Linux 8 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

OL08-00-010130 - The OL 8 shadow password suite must be configured to use a sufficient number of hashing rounds.DISA Oracle Linux 8 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

PHTN-40-000039 The operating system must store only encrypted representations of passwords.DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-08-010110 - RHEL 8 must encrypt all stored passwords with a FIPS 140-2 approved cryptographic hashing algorithm.DISA Red Hat Enterprise Linux 8 STIG v2r1Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-08-010120 - RHEL 8 must employ FIPS 140-2 approved cryptographic hashing algorithms for all stored passwords.DISA Red Hat Enterprise Linux 8 STIG v2r1Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-08-010130 - The RHEL 8 shadow password suite must be configured to use a sufficient number of hashing rounds.DISA Red Hat Enterprise Linux 8 STIG v2r1Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-611050 - RHEL 9 password-auth must be configured to use a sufficient number of hashing rounds.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-611055 - RHEL 9 system-auth must be configured to use a sufficient number of hashing rounds.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-611135 - RHEL 9 must be configured so that user and group account administration utilities are configured to store only encrypted representations of passwords.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-611140 - RHEL 9 must be configured to use the shadow file to store only encrypted representations of passwords.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-671015 - RHEL 9 must employ FIPS 140-3 approved cryptographic hashing algorithms for all stored passwords.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

RHEL-09-671025 - RHEL 9 pam_unix.so module must be configured in the password-auth file to use a FIPS 140-3 approved cryptographic hashing algorithm for system authentication.DISA Red Hat Enterprise Linux 9 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

SLES-15-020170 - The SUSE operating system must configure the Linux Pluggable Authentication Modules (PAM) to only store encrypted representations of passwords - PAM to only store encrypted representations of passwords.DISA SLES 15 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

SLES-15-020180 - The SUSE operating system must employ FIPS 140-2-approved cryptographic hashing algorithms for all stored passwords.DISA SLES 15 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

SLES-15-020190 - The SUSE operating system must employ FIPS 140-2-approved cryptographic hashing algorithms for all stored passwords.DISA SLES 15 STIG v2r2Unix

IDENTIFICATION AND AUTHENTICATION

SOL-11.1-040130 - Systems must employ cryptographic hashes for passwords using the SHA-2 family of algorithms or FIPS 140-2 approved successors.DISA STIG Solaris 11 X86 v3r1Unix

IDENTIFICATION AND AUTHENTICATION

SOL-11.1-040130 - Systems must employ cryptographic hashes for passwords using the SHA-2 family of algorithms or FIPS 140-2 approved successors.DISA STIG Solaris 11 SPARC v3r1Unix

IDENTIFICATION AND AUTHENTICATION

UBTU-20-010070 - The Ubuntu operating system must prohibit password reuse for a minimum of five generations.DISA STIG Ubuntu 20.04 LTS v2r1Unix

IDENTIFICATION AND AUTHENTICATION

UBTU-22-611055 - Ubuntu 22.04 LTS must store only encrypted representations of passwords.DISA STIG Canonical Ubuntu 22.04 LTS v2r2Unix

IDENTIFICATION AND AUTHENTICATION

WN10-AC-000045 - Reversible password encryption must be disabled.DISA Windows 10 STIG v3r2Windows

IDENTIFICATION AND AUTHENTICATION

WN10-SO-000195 - The system must be configured to prevent the storage of the LAN Manager hash of passwords.DISA Windows 10 STIG v3r2Windows

IDENTIFICATION AND AUTHENTICATION

WN11-AC-000045 - Reversible password encryption must be disabled.DISA Windows 11 STIG v2r2Windows

IDENTIFICATION AND AUTHENTICATION

WN11-SO-000195 - The system must be configured to prevent the storage of the LAN Manager hash of passwords.DISA Windows 11 STIG v2r2Windows

IDENTIFICATION AND AUTHENTICATION

WN19-AC-000090 - Windows Server 2019 reversible password encryption must be disabled.DISA Windows Server 2019 STIG v3r2Windows

IDENTIFICATION AND AUTHENTICATION

WN19-SO-000300 - Windows Server 2019 must be configured to prevent the storage of the LAN Manager hash of passwords.DISA Windows Server 2019 STIG v3r2Windows

IDENTIFICATION AND AUTHENTICATION

WN22-AC-000090 - Windows Server 2022 reversible password encryption must be disabled.DISA Windows Server 2022 STIG v2r2Windows

IDENTIFICATION AND AUTHENTICATION

WN22-SO-000300 - Windows Server 2022 must be configured to prevent the storage of the LAN Manager hash of passwords.DISA Windows Server 2022 STIG v2r2Windows

IDENTIFICATION AND AUTHENTICATION