Item Search

NameAudit NamePluginCategory
1.1 Ensure a customer created Customer Master Key (CMK) is created for the Web-tierCIS Amazon Web Services Three-tier Web Architecture L2 1.0.0amazon_aws

ACCESS CONTROL

1.2 Ensure a customer created Customer Master Key (CMK) is created for the App-tierCIS Amazon Web Services Three-tier Web Architecture L2 1.0.0amazon_aws

ACCESS CONTROL

1.3 Ensure a customer created Customer Master Key (CMK) is created for the Database-TierCIS Amazon Web Services Three-tier Web Architecture L2 1.0.0amazon_aws

ACCESS CONTROL

2.2.10 Ensure 'SEC_MAX_FAILED_LOGIN_ATTEMPTS' Is '3' or LessCIS Oracle Server 19c DB Traditional Auditing v1.2.0OracleDB

ACCESS CONTROL

2.2.10 Ensure 'SEC_MAX_FAILED_LOGIN_ATTEMPTS' Is '3' or LessCIS Oracle Server 19c DB Unified Auditing v1.2.0OracleDB

ACCESS CONTROL

3.1 Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'CIS Oracle Server 19c DB Unified Auditing v1.2.0OracleDB

ACCESS CONTROL

3.1.1 Client certificate authentication should not be used for usersCIS Kubernetes v1.20 Benchmark v1.0.1 L1 MasterUnix

ACCESS CONTROL

3.1.2 Service account token authentication should not be used for usersCIS Kubernetes v1.10.0 L1 MasterUnix

ACCESS CONTROL

3.2 Ensure 'PASSWORD_LOCK_TIME' Is Greater than or Equal to '1'CIS Oracle Server 19c DB Unified Auditing v1.2.0OracleDB

ACCESS CONTROL

3.3 Ensure 'PASSWORD_LIFE_TIME' Is Less than or Equal to '90'CIS Oracle Server 19c DB Unified Auditing v1.2.0OracleDB

ACCESS CONTROL

3.3 Ensure 'PASSWORD_LIFE_TIME' Is Less than or Equal to '90'CIS Oracle Server 19c DB Traditional Auditing v1.2.0OracleDB

ACCESS CONTROL

3.8 Ensure 'SESSIONS_PER_USER' Is Less than or Equal to '10'CIS Oracle Server 19c DB Traditional Auditing v1.2.0OracleDB

ACCESS CONTROL

4.4.2.1.2 Ensure password failed attempts lockout is configuredCIS CentOS Linux 7 v4.0.0 L1 ServerUnix

ACCESS CONTROL

4.4.2.1.4 Ensure password failed attempts lockout includes root accountCIS Oracle Linux 7 v4.0.0 L2 WorkstationUnix

ACCESS CONTROL

4.4.2.1.4 Ensure password failed attempts lockout includes root accountCIS Red Hat Enterprise Linux 7 v4.0.0 L2 ServerUnix

ACCESS CONTROL

4.4.3.1.1 Ensure password failed attempts lockout is configuredCIS Red Hat EL8 Server L1 v3.0.0Unix

ACCESS CONTROL

4.4.3.1.1 Ensure password failed attempts lockout is configuredCIS Rocky Linux 8 Server L1 v2.0.0Unix

ACCESS CONTROL

4.4.3.1.1 Ensure password failed attempts lockout is configuredCIS AlmaLinux OS 8 Workstation L1 v3.0.0Unix

ACCESS CONTROL

4.4.3.1.1 Ensure password failed attempts lockout is configuredCIS Rocky Linux 8 Workstation L1 v2.0.0Unix

ACCESS CONTROL

4.4.3.1.2 Ensure password unlock time is configuredCIS Red Hat EL8 Server L1 v3.0.0Unix

ACCESS CONTROL

4.4.3.1.3 Ensure password failed attempts lockout includes root accountCIS Red Hat EL8 Server L2 v3.0.0Unix

ACCESS CONTROL

4.4.3.1.3 Ensure password failed attempts lockout includes root accountCIS Rocky Linux 8 Server L2 v2.0.0Unix

ACCESS CONTROL

4.4.3.1.3 Ensure password failed attempts lockout includes root accountCIS AlmaLinux OS 8 Workstation L2 v3.0.0Unix

ACCESS CONTROL

4.5 Ensure that Shared Access Signature Tokens Expire Within an HourCIS Microsoft Azure Foundations v3.0.0 L1microsoft_azure

ACCESS CONTROL

4.5.2 Ensure lockout for failed password attempts is configuredCIS Amazon Linux 2023 Server L1 v1.0.0Unix

ACCESS CONTROL

5.2.1 Ensure Password Account Lockout Threshold Is ConfiguredCIS Apple macOS 13.0 Ventura Cloud-tailored v1.0.0 L1Unix

ACCESS CONTROL

5.2.1 Ensure Password Account Lockout Threshold Is ConfiguredCIS Apple macOS 11.0 Big Sur v4.0.0 L1Unix

ACCESS CONTROL

5.2.1 Ensure Password Account Lockout Threshold Is ConfiguredCIS Apple macOS 10.14 v2.0.0 L1Unix

ACCESS CONTROL

5.2.1 Ensure Password Account Lockout Threshold Is ConfiguredCIS Apple macOS 10.15 Catalina v3.0.0 L1Unix

ACCESS CONTROL

5.3.2.2 Ensure pam_faillock module is enabledCIS Debian Linux 11 v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.3.2.2 Ensure pam_faillock module is enabledCIS Debian Linux 11 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.2.2 Ensure pam_faillock module is enabledCIS Ubuntu Linux 22.04 LTS v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.3.3.1.1 Ensure password failed attempts lockout is configuredCIS Debian Linux 11 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.1 Ensure password failed attempts lockout is configuredCIS AlmaLinux OS 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.1 Ensure password failed attempts lockout is configuredCIS Oracle Linux 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.1 Ensure password failed attempts lockout is configuredCIS Rocky Linux 9 v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.3.3.1.2 Ensure password unlock time is configuredCIS Debian Linux 11 v2.0.0 L1 ServerUnix

ACCESS CONTROL

5.3.3.1.2 Ensure password unlock time is configuredCIS Debian Linux 11 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.2 Ensure password unlock time is configuredCIS Debian Linux 12 v1.1.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.2 Ensure password unlock time is configuredCIS Red Hat Enterprise Linux 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.2 Ensure password unlock time is configuredCIS Rocky Linux 9 v2.0.0 L1 WorkstationUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Debian Linux 11 v2.0.0 L2 ServerUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Ubuntu Linux 22.04 LTS v2.0.0 L2 ServerUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Oracle Linux 9 v2.0.0 L2 ServerUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Oracle Linux 9 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Red Hat Enterprise Linux 9 v2.0.0 L2 ServerUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Debian Linux 12 v1.1.0 L2 WorkstationUnix

ACCESS CONTROL

5.3.3.1.3 Ensure password failed attempts lockout includes root accountCIS Red Hat Enterprise Linux 9 v2.0.0 L2 WorkstationUnix

ACCESS CONTROL

5.5.2 Ensure lockout for failed password attempts is configuredCIS CentOS Linux 8 Workstation L1 v2.0.0Unix

ACCESS CONTROL

5.5.2 Ensure lockout for failed password attempts is configuredCIS Fedora 28 Family Linux Workstation L1 v2.0.0Unix

ACCESS CONTROL