| 1.2.4 Ensure that A Multi-factor Authentication Policy Exists for All Users | CIS Microsoft Azure Foundations v2.1.0 L1 | microsoft_azure | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
| 2.006 - ACLs for system files and directories do not conform to minimum requirements. - 'C:' | DISA Windows Vista STIG v6r41 | Windows | ACCESS CONTROL |
| 2.006 - ACLS FOR SYSTEM FILES AND DIRECTORIES DO NOT CONFORM TO MINIMUM REQUIREMENTS. - 'C:\Program Files' | DISA Windows Vista STIG v6r41 | Windows | ACCESS CONTROL |
| 2.006 - ACLS FOR SYSTEM FILES AND DIRECTORIES DO NOT CONFORM TO MINIMUM REQUIREMENTS. - 'C:\Windows' | DISA Windows Vista STIG v6r41 | Windows | ACCESS CONTROL |
| 2.008 - Local volumes are not formatted using NTFS. | DISA Windows Server 2008 MS STIG v6r46 | Windows | ACCESS CONTROL |
| 2.008 - Local volumes will be formatted using NTFS. | DISA Windows Server 2008 R2 DC STIG v1r34 | Windows | ACCESS CONTROL |
| Catalina - Disable Handoff | NIST macOS Catalina v1.5.0 - 800-53r4 Moderate | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Catalina - Disable Handoff | NIST macOS Catalina v1.5.0 - All Profiles | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| GEN000000-AIX00060 - A baseline of AIX files with the TCB bit set must be checked weekly. | DISA STIG AIX 6.1 v1r13 | Unix | ACCESS CONTROL |
| GEN000000-AIX0350 - The /etc/ftpaccess.ctl file must not have an extended ACL. | DISA STIG AIX 6.1 v1r13 | Unix | ACCESS CONTROL |
| GEN000000-LNX00800 - Use a Linux Security Module configured to limit privileges of system services - 'SELINUXTYPE = targeted or strict' | DISA STIG for Red Hat Enterprise Linux 5 v1r17 Audit | Unix | ACCESS CONTROL |
| GEN000290-4 - The system must not have the unnecessary 'ftp' account. | DISA STIG for Red Hat Enterprise Linux 5 v1r17 Audit | Unix | ACCESS CONTROL |
| GEN001190 - All network services daemon files must not have extended ACLs. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001210 - All system command files must not have extended ACLs - '/sbin' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001210 - All system command files must not have extended ACLs - '/usr/usb' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001270 - System log files must not have extended ACLs, except as needed to support authorized software. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001310 - All library files must not have extended ACLs - '/lib64/*' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001430 - The /etc/shadow file must not have an extended ACL - or equivalent file must not have an extended ACL. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/csh.cshrc' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/csh.login' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/csh.logout' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001730 - All global initialization files must not have extended ACLs - '/etc/profile' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN001810 - Skeleton files must not have extended ACLs. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN002718 - System audit tool executables must not have extended ACLs - '/sbin/ausearch' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003090 - Crontab files must not have extended ACLs - '/etc/cron.d' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003090 - Crontab files must not have extended ACLs - '/etc/cron.weekly' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003110 - Cron and crontab directories must not have extended ACLs - '/etc/cron.weekly' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003110 - Cron and crontab directories must not have extended ACLs - '/var/spool/cron' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003210 - The cron.deny file must not have an extended ACL. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003220 - Cron programs must not set the umask to a value less restrictive than 077 - '/etc/cron.d/*' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003220 - Cron programs must not set the umask to a value less restrictive than 077 - '/etc/cron.weekly/*' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003220 - Cron programs must not set the umask to a value less restrictive than 077 - '/var/spool/cron/*' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003245 - The at.allow file must not have an extended ACL. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003410 - The at directory must not have an extended ACL - at directory must not have an extended ACL. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003440 - At jobs must not set the umask to a value less restrictive than 077 - At jobs must not set the umask to a value less restrictive than 077. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003523 - The kernel core dump data directory must not have an extended ACL. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN003745 - The inetd.conf and xinetd.conf files must not have extended ACLs. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN004010 - The traceroute file must not have an extended ACL. | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN004390 - The alias file must not have an extended ACL - '/etc/aliases.db' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN004390 - The alias file must not have an extended ACL - '/etc/postfix/aliases' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN005040 - All FTP users must have a default umask of 077 - '/etc/vsftpd/vsftpd.conf anon_umask' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN005040 - All FTP users must have a default umask of 077 - '/etc/vsftpd/vsftpd.conf local_umask' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN005395 - The /etc/syslog.conf file must not have an extended ACL. - /etc/rsyslog.conf | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| GEN006210 - The /etc/smbpasswd file must not have an extended ACL - '/etc/samba/passdb.tdb' | DISA STIG for Oracle Linux 5 v1r14 | Unix | ACCESS CONTROL |
| Monterey - Disable FileVault Automatic Login | NIST macOS Monterey v1.0.0 - 800-53r5 Moderate | Unix | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
| Monterey - Disable FileVault Automatic Login | NIST macOS Monterey v1.0.0 - 800-53r4 Low | Unix | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
| Monterey - Disable FileVault Automatic Login | NIST macOS Monterey v1.0.0 - 800-53r5 Low | Unix | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
| Monterey - Disable Handoff | NIST macOS Monterey v1.0.0 - All Profiles | Unix | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| WINUR-000017 - The Deny access to this computer from the network user right on workstations must be configured - guests | DISA Windows Vista STIG v6r41 | Windows | ACCESS CONTROL |
| WINUR-000018 - The Deny log on as a batch job user right must be configured to prevent access. | DISA Windows Vista STIG v6r41 | Windows | ACCESS CONTROL |
