Item Search

Name	Audit Name	Plugin	Category
1.1 Set 'Maximum send size - connector level' to '10240'	CIS Microsoft Exchange Server 2013 Edge v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.2 Set 'Maximum receive size - organization level' to '10240'	CIS Microsoft Exchange Server 2013 Hub v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
1.17 Set 'Maximum send size - organization level' to '10240'	CIS Microsoft Exchange Server 2013 Hub v1.1.0	Windows	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.31 Ensure 'Deny log on locally' to include 'Guests, Enterprise Admins group, and Domain Admins group' (STIG MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	CONFIGURATION MANAGEMENT
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 (L1) Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.9.5 Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher (MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	CONFIGURATION MANAGEMENT, SYSTEM AND SERVICES ACQUISITION
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths'	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker	Windows	ACCESS CONTROL, AUDIT AND ACCOUNTABILITY
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL NG	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 11 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG	Windows	ACCESS CONTROL
2.3.10.8 (L1) Ensure 'Network access: Remotely accessible registry paths and sub-paths' is configured	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	ACCESS CONTROL
2.3.10.8 Ensure 'Network access: Remotely accessible registry paths and sub-paths'	CIS Windows 7 Workstation Level 1 v3.2.0	Windows	ACCESS CONTROL
2.3.10.8 Ensure 'Network access: Remotely accessible registry paths and sub-paths'	CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0	Windows	ACCESS CONTROL
2.3.10.11 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.11 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Windows Server 2012 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.10.13 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.10.13 (L1) Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.13 Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.10.13 Ensure 'Network access: Restrict clients allowed to make remote calls to SAM' is set to 'Administrators: Remote Access: Allow' (MS only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS	Windows	ACCESS CONTROL
2.3.11.2 Ensure 'Network security: Allow LocalSystem NULL session fallback' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.13.1 (L1) Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.13.1 Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.13.1 Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.13.1 Ensure 'Shutdown: Allow system to be shut down without having to log on' is set to 'Disabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
3.9 Ensure Windows BUILTIN groups are not SQL Logins	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	ACCESS CONTROL, MEDIA PROTECTION
17.4.2 Ensure 'Audit Directory Service Access' is set to include 'Success and Failure' (STIG DC only)	CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.4.2 Ensure 'Audit Directory Service Access' is set to include 'Success and Failure' (STIG DC only)	CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
17.4.3 Ensure 'Audit Directory Service Access' is set to include 'Success and Failure' (STIG DC only)	CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DC	Windows	AUDIT AND ACCOUNTABILITY
SQL6-D0-004300 - SQL Server must be configured to generate audit records for DoD-defined auditable events within all DBMS/database components.	DISA STIG SQL Server 2016 Instance DB Audit v3r2	MS_SQLDB	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search