DG0104: DBMS service identification - 'Review database names for compliance with naming standards' | DISA STIG SQL Server 2005 Database OS Audit v1r7 | Windows | |
DG0140: DBMS security data access | DISA STIG SQL Server 2005 Database OS Audit v1r7 | Windows | |
DG0152: DBMS network port, protocol and services (PPS) use - 'TCPDynamicPorts = NULL' | DISA STIG SQL Server 2005 Database OS Audit v1r7 | Windows | |
DG0152: DBMS network port, protocol and services (PPS) use - 'TcpPort = 1433 or 1434' | DISA STIG SQL Server 2005 Database OS Audit v1r7 | Windows | |
DISA_IIS_7.0_Web_Server_v1r19.audit from DISA IIS 7.0 Server STIG v1r19 STIG | DISA IIS 7.0 Web Server v1r19 | Windows | |
DISA_STIG_Cisco_ASA_FW_v1r1.audit from DISA Cisco ASA v1r1 STIG | DISA STIG Cisco ASA FW v1r1 | Cisco | |
DM6109: Analysis Services database role membership | DISA STIG SQL Server 2005 Database OS Audit v1r7 | Windows | |
NET-IPV6-034 - IPv6 Egress Outbound Spoofing Filter - 'deny ipv6 any any log' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET-MCAST-002 - PIM neighbor filter is not configured - 'ip pim neighbor-filter IP_PIM_NEIGHBORS_ACL' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET-TUNL-034 - L2TPv3 sessions are not authenticated - encapsulation check | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET-VLAN-005 - VLAN 1 traffic traverses across unnecessary trunk | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET-VLAN-007 - Ensure trunking is disabled on all access ports. | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET0340 - Login banner is non-existent or not DoD approved - 'banner motd' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | ACCESS CONTROL |
NET0400 - Interior routing protocols are not authenticated - 'EIGRP (Key-Chain Check)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0400 - Interior routing protocols are not authenticated - 'IS-IS (Interface Check - isis authentication mode)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0400 - Interior routing protocols are not authenticated - 'IS-IS (Key-Chain Check)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0400 - Interior routing protocols are not authenticated - 'RIPv2 (Interface Check - authentication key-chain)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0405 - A service or feature that calls home to the vendor must be disabled. | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | ACCESS CONTROL |
NET0408 - BGP must authenticate all peers | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0422 - Keys expiration exceeds 180 days. | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0425 - An Infinite Lifetime key has not been implemented - 'Ensure rotating keys are not set to accept-lifetime infinite - Key 2' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0425 - An Infinite Lifetime key has not been implemented - 'Third key set to accept-lifetime infinite' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0433 - The device is not authenticated using a AAA server - 'aaa new-model' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION |
NET0433 - The device is not authenticated using a AAA server - 'ip http authentication' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | IDENTIFICATION AND AUTHENTICATION |
NET0813 - The network element must authenticate all NTP messages received from NTP servers and peers. | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | CONFIGURATION MANAGEMENT |
NET0820 - DNS servers must be defined for client resolver | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET0890 - Network devices must only allow SNMPv2 access from addresses belonging to the management network. | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0897 - RADIUS Authentication traffic does not use loopback interface. | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0902 - FTP/TFTP traffic does not use loopback - 'ip ftp source-interface Loopback0' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0966 - Control plan protection is not enabled - 'inbound ACL option' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET0988 - Traffic from the managed network will leak - 'access-list OOBM_EGRESS_ACL deny' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0988 - Traffic from the managed network will leak - 'access-list OOBM_EGRESS_ACL permit' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0989 - Management traffic leaks into the managed network - 'access-list OOBM_INGRESS_ACL permit' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0992 - The management interface does not have an ACL - 'Step 3 (ip local policy route-map LOCAL_POLICY)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET0995 - Management VLAN has invalid addresses | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET0996 - Invalid ports with membership to the mgmt VLAN | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET1004 - No ingress ACL on management VLAN interface | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET1006 - IPSec traffic is not restricted - 'access-list IN_BAND_MGMT_VPN_ACL permit' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET1007 - Management traffic is not classified and marked | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET1007 - Management traffic is not classified and marked - 'Interface Configured (service-policy input DIST_LAYER_POLICY)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | CONFIGURATION MANAGEMENT |
NET1008 - Management traffic doesn't get preferred treatment | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |
NET1020 - Interface ACL deny statements are not logged | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
NET1021 - The network element must log all messages except debugging. - 'Debugging on' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | AUDIT AND ACCOUNTABILITY |
NET1021 - The network element must log all messages except debugging. - 'Logging LOGGING_HOST_IP' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | AUDIT AND ACCOUNTABILITY |
NET1636 - Management connections must require passwords - 'VTY port (login authentication AUTH_LIST)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | ACCESS CONTROL |
NET1638 - Management connections must be secured by FIPS 140-2 -'ip http server' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | CONFIGURATION MANAGEMENT |
NET1640 - Management connections must be logged - login success | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | AUDIT AND ACCOUNTABILITY |
NET1646 - SSH login attempts value is greater than 3 - 'ip ssh authentication-retries not found' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | ACCESS CONTROL |
NET1807 - Management traffic is not restricted - 'Interface crypto map configured (crypto map MYVPN)' | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | SYSTEM AND COMMUNICATIONS PROTECTION |
SNMPv2 CONFIG IF STATEMENT With ACL | DISA STIG Cisco Infrastructure Router and L3 Switch v8r28 | Cisco | |