Item Search

NameAudit NamePluginCategory
1.4.1 Ensure permissions on bootloader config are configuredCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0Unix

SYSTEM AND INFORMATION INTEGRITY

2.1 Run BIND as a non-root User - process -u namedCIS BIND DNS v3.0.1 Caching Only Name ServerUnix

ACCESS CONTROL

2.3.17.1 Ensure 'User Account Control: Admin Approval Mode for the Built-in Administrator account' is set to 'Enabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

2.3.17.3 Ensure 'User Account Control: Behavior of the elevation prompt for standard users' is set to 'Automatically deny elevation requests'CIS Windows 7 Workstation Level 1 v3.2.0Windows

ACCESS CONTROL

2.8 Ensure Dbcreator and Securityadmin roles are only used as neededCIS Microsoft SharePoint 2019 DB v1.0.0MS_SQLDB

ACCESS CONTROL

3.1.3 Require explicit authorization for catalogingCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix

ACCESS CONTROL

3.1.3 Require explicit authorization for cataloging - 'catalog_noauth = no'CIS IBM DB2 OS L2 v1.2.0Unix

ACCESS CONTROL

5.3 Ensure Linux Kernel Capabilities are restricted within containersCIS Docker Community Edition v1.1.0 L1 DockerUnix

ACCESS CONTROL

5.6 Ensure access to the su command is restrictedCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0Unix

ACCESS CONTROL

5.8 Set DCUI.Access to allow trusted users to override lockdown modeCIS VMware ESXi 5.1 v1.0.1 Level 1VMware

ACCESS CONTROL

6.1.14 Audit SGID executablesCIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0Unix

ACCESS CONTROL

6.2.5 Ensure root is the only UID 0 accountCIS Amazon Linux v2.1.0 L1Unix

ACCESS CONTROL

6.2.5 Ensure root is the only UID 0 accountCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0Unix

ACCESS CONTROL

6.2.6 Ensure root PATH IntegrityCIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0Unix

CONFIGURATION MANAGEMENT

7.1 Secure SYSADM authority - SYSADM Group MembersCIS IBM DB2 v10 v1.1.0 Linux OS Level 2Unix

ACCESS CONTROL

7.2 Secure SYSCTRL authority - SYSCTRL GroupCIS IBM DB2 v10 v1.1.0 Windows OS Level 2Windows

ACCESS CONTROL

7.3 Secure SYSMAINT AuthorityCIS IBM DB2 v10 v1.1.0 Linux OS Level 1Unix

ACCESS CONTROL

7.3 Secure SYSMAINT AuthorityCIS IBM DB2 v10 v1.1.0 Windows OS Level 1Windows

ACCESS CONTROL

7.4 Establish a system monitoring groupCIS IBM DB2 9 Benchmark v3.0.1 Level 1 OS LinuxUnix

ACCESS CONTROL

9.5 Verify No UID 0 Accounts Exist Other than rootCIS Solaris 11.1 L1 v1.0.0Unix

ACCESS CONTROL

9.5 Verify No UID 0 Accounts Exist Other than rootCIS Solaris 11.2 L1 v1.1.0Unix

ACCESS CONTROL

18.8.36.2 Ensure 'Configure Solicited Remote Assistance' is set to 'Disabled'CIS Windows 7 Workstation Level 1 v3.2.0Windows

ACCESS CONTROL

18.8.36.2 Ensure 'Configure Solicited Remote Assistance' is set to 'Disabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

18.9.85.1 Ensure 'Allow user control over installs' is set to 'Disabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

18.9.85.2 Ensure 'Always install with elevated privileges' is set to 'Disabled'CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0Windows

ACCESS CONTROL

Allow user control over installsMSCT Windows Server v20H2 DC v1.0.0Windows

ACCESS CONTROL

Allow user control over installsMSCT Windows 10 1809 v1.0.0Windows

ACCESS CONTROL

Configure Solicited Remote Assistance - fAllowToGetHelpMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

Configure Solicited Remote Assistance - fAllowToGetHelpMSCT Windows 10 1809 v1.0.0Windows

ACCESS CONTROL

Ensure access to the su command is restricted - pam_wheel.soTenable Cisco Firepower Management Center OS Best Practices AuditUnix

ACCESS CONTROL

Ensure syslog-ng default file permissions configuredTenable Cisco Firepower Management Center OS Best Practices AuditUnix

AUDIT AND ACCOUNTABILITY

User Account Control: Admin Approval Mode for the Built-in Administrator accountMSCT Windows 10 1803 v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for administrators in Admin Approval ModeMSCT Windows Server 2012 R2 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for administrators in Admin Approval ModeMSCT Windows 10 1803 v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for administrators in Admin Approval ModeMSCT Windows 10 1809 v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for standard usersMSCT Windows Server v1909 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for standard usersMSCT Windows Server 2012 R2 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Behavior of the elevation prompt for standard usersMSCT Windows 10 1803 v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server 2019 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows Server v20H2 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Detect application installations and prompt for elevationMSCT Windows 10 1803 v1.0.0Windows

ACCESS CONTROL

User Account Control: Only elevate UIAccess applications that are installed in secure locationsMSCT Windows Server 1903 DC v1.19.9Windows

ACCESS CONTROL

User Account Control: Only elevate UIAccess applications that are installed in secure locationsMSCT Windows Server 2012 R2 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Only elevate UIAccess applications that are installed in secure locationsMSCT Windows Server 2019 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Only elevate UIAccess applications that are installed in secure locationsMSCT Windows 10 v1507 v1.0.0Windows

ACCESS CONTROL

User Account Control: Only elevate UIAccess applications that are installed in secure locationsMSCT Windows 10 1803 v1.0.0Windows

ACCESS CONTROL

User Account Control: Run all administrators in Admin Approval ModeMSCT Windows Server v2004 MS v1.0.0Windows

ACCESS CONTROL

User Account Control: Run all administrators in Admin Approval ModeMSCT Windows Server 2019 DC v1.0.0Windows

ACCESS CONTROL

User Account Control: Run all administrators in Admin Approval ModeMSCT Windows 10 1809 v1.0.0Windows

ACCESS CONTROL

User Account Control: Switch to the secure desktop when prompting for elevationMSCT Windows Server 2012 R2 MS v1.0.0Windows

ACCESS CONTROL