| 1.3.2 Ensure 'Maximum lifetime for service ticket' is set to '600 or fewer minutes, but not 0' (STIG DC only) | CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG DC | Windows | IDENTIFICATION AND AUTHENTICATION |
| 1.3.3 Ensure 'Maximum lifetime for user ticket' is set to '10 or fewer hours, but not 0' (STIG DC only) | CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG DC | Windows | IDENTIFICATION AND AUTHENTICATION |
| 1.3.4 Ensure 'Maximum lifetime for user ticket renewal' is set to '7 or fewer days' (STIG DC only) | CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG DC | Windows | IDENTIFICATION AND AUTHENTICATION |
| 1.4.14.8 Secure Remote Login 'GSSAPICleanupCredentials' | CIS Apple OSX 10.6 Snow Leopard L2 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.5 Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set | CIS Microsoft Windows Server 2008 Member Server Level 2 v3.1.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.6 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only) | CIS Microsoft Windows Server 2019 STIG v2.0.0 STIG MS | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.6 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only) | CIS Microsoft Windows Server 2022 v3.0.0 L2 Member Server | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.6 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only) | CIS Microsoft Windows Server 2019 STIG v2.0.0 L2 MS | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.6 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only) | CIS Microsoft Windows Server 2019 v3.0.1 L2 MS | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.6 Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only) | CIS Microsoft Windows Server 2016 STIG v3.0.0 STIG MS | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.6 Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' (MS only) | CIS Microsoft Windows Server 2022 STIG v1.0.0 STIG MS | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.7 (L1) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' | CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.7 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' | CIS Microsoft Windows 11 Enterprise v3.0.0 L2 + BitLocker | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.3.7.7 (L2) Ensure 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' is set to '4 or fewer logon(s)' | CIS Microsoft Windows 10 Enterprise v3.0.0 L2 + BL + NG | Windows | IDENTIFICATION AND AUTHENTICATION |
| 2.4.14.4 Secure SMB (Only allow NTLMv2 and LMv2 response) | CIS Apple OSX 10.5 Leopard L2 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 3.11.36.3.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Intune for Windows 10 v3.0.1 L1 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 3.11.36.3.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Intune for Windows 11 v3.0.1 L1 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 5.3.1 Ensure password creation requirements are configured - system-auth try_first_pass | CIS Oracle Linux 7 Server L1 v3.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.3.1 Ensure password creation requirements are configured - system-auth try_first_pass | CIS Oracle Linux 7 Workstation L1 v3.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.3.1 Ensure password creation requirements are configured - system-auth try_first_pass | CIS Amazon Linux 2 v1.0.0 L1 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.4 Automatically lock the login keychain for inactivity | CIS Apple OSX 10.10 Yosemite L2 v1.2.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.4 Automatically lock the login keychain for inactivity | CIS Apple OSX 10.11 El Capitan L2 v1.1.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.5 NFS - 'wafl.wcc_minutes_valid has been configured' | TNS NetApp Data ONTAP 7G | NetApp | IDENTIFICATION AND AUTHENTICATION |
| 5.6 Ensure login keychain is locked when the computer sleeps | CIS Apple macOS 10.12 L2 v1.2.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.6 Ensure login keychain is locked when the computer sleeps | CIS Apple macOS 10.15 v1.3.0 L2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 5.8 Ensure login keychain is locked when the computer sleeps | CIS Apple macOS 10.13 L2 v1.0.0 | Unix | IDENTIFICATION AND AUTHENTICATION |
| 18.9.58.2.2 Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Windows Server 2008 Member Server Level 1 v3.1.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.9.59.2.2 Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Windows 7 Workstation Level 1 v3.2.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.10.56.2.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.10.56.2.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.10.56.2.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL + NG | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.10.56.2.2 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL | Windows | IDENTIFICATION AND AUTHENTICATION |
| 18.10.56.2.3 (L1) Ensure 'Do not allow passwords to be saved' is set to 'Enabled' | CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows Server 2022 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows 11 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows 10 v21H1 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows 10 v22H2 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows 11 v22H2 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows 11 v23H2 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT MSCT Windows Server 2022 DC v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Do not allow passwords to be saved | MSCT Windows 10 v2004 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Enable saving passwords to the password manager | MSCT Microsoft Edge Version 79 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Enable saving passwords to the password manager | MSCT Microsoft Edge Version 81 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Enable saving passwords to the password manager | MSCT Edge v84 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Enable saving passwords to the password manager | MSCT Edge v89 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Sign-in and lock last interactive user automatically after a restart | MSCT Windows 10 v21H1 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Sign-in and lock last interactive user automatically after a restart | MSCT Windows 11 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Sign-in and lock last interactive user automatically after a restart | MSCT Windows 11 v23H2 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Sign-in and lock last interactive user automatically after a restart | MSCT Windows 10 v21H2 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
| Sign-in last interactive user automatically after a system-initiated restart | MSCT Windows 10 v1703 v1.0.0 | Windows | IDENTIFICATION AND AUTHENTICATION |
