Item Search

Name	Audit Name	Plugin	Category
1.1.1.3 Set 'Reset account lockout counter after' to '15 minute(s)'	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.1.3.6.1 Set 'Interactive logon: Machine account lockout threshold' to 10 or fewer invalid logon attempts	CIS Windows 8 L1 v1.0.0	Windows	ACCESS CONTROL
1.2.6 - /etc/security/user - 'loginretries <= 3'	CIS AIX 5.3/6.1 L1 v1.1.0	Unix	ACCESS CONTROL
1.4.2 Ensure 'Failed Attempts' and 'Lockout Time' for Authentication Profile are properly configured - Failed Attempts	CIS Palo Alto Firewall 7 Benchmark L1 v1.0.0	Palo_Alto	ACCESS CONTROL
5.2.5 Ensure SSH MaxAuthTries is set to 4 or less	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
5.3.2 Ensure lockout for failed password attempts is configured - password-auth 'auth required pam_faillock.so preauth audit silent deny=5 unlock_time=900'	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
5.3.2 Ensure lockout for failed password attempts is configured - system-auth 'auth required pam_faillock.so preauth audit silent deny=5 unlock_time=900'	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
5.3.2 Ensure lockout for failed password attempts is configured - system-auth 'auth sufficient pam_faillock.so authsucc audit deny=5 unlock_time=900'	CIS Amazon Linux v2.1.0 L1	Unix	ACCESS CONTROL
6.15 Set Retry Limit for Account Lockout - LOCK_AFTER_RETRIES = yes	CIS Solaris 11.1 L1 v1.0.0	Unix	ACCESS CONTROL
7.12 Limit number of failed login attempts	CIS Solaris 9 v1.3	Unix	ACCESS CONTROL
9.2.1 Set Password Creation Requirement Parameters Using pam_cracklib - retry=3	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0	Unix	ACCESS CONTROL
Account lockout duration	MSCT Windows Server v20H2 MS v1.0.0	Windows	ACCESS CONTROL
Account lockout duration	MSCT Windows 10 1909 v1.0.0	Windows	ACCESS CONTROL
Account lockout duration	MSCT Windows 10 v2004 v1.0.0	Windows	ACCESS CONTROL
Account lockout duration	MSCT Windows Server v2004 DC v1.0.0	Windows	ACCESS CONTROL
Account lockout duration	MSCT Windows Server v2004 MS v1.0.0	Windows	ACCESS CONTROL
Account lockout threshold	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Account lockout threshold	MSCT Windows 10 1803 v1.0.0	Windows	ACCESS CONTROL
Audit Account Lockout	MSCT Windows Server v2004 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows Server 2016 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows Server v20H2 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows 10 v1507 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows 10 v2004 v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows Server v2004 MS v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Audit Account Lockout	MSCT Windows Server 2012 R2 DC v1.0.0	Windows	AUDIT AND ACCOUNTABILITY
Extreme : Configure max-failed-logins <= 3	TNS Extreme ExtremeXOS Best Practice Audit	Extreme_ExtremeXOS	ACCESS CONTROL
FireEye - AAA lockouts are enabled	TNS FireEye	FireEye	ACCESS CONTROL
FireEye - AAA lockouts delay further attempts for at least 30 seconds	TNS FireEye	FireEye	ACCESS CONTROL
Fortigate - Admin password lockout threshold - '1-3'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Huawei: SSH Max Retries <= 3	TNS Huawei VRP Best Practice Audit	Huawei	ACCESS CONTROL
IBM i : Action When Sign-On Attempts Reached (QMAXSGNACN) - '3'	IBM System i Security Reference for V7R1 and V6R1	AS/400	ACCESS CONTROL
IBM i : Maximum Sign-On Attempts (QMAXSIGN) - '<=3'	IBM System i Security Reference for V7R1 and V6R1	AS/400	ACCESS CONTROL
IBM i : Maximum Sign-On Attempts (QMAXSIGN) - '<=3'	IBM System i Security Reference for V7R3	AS/400	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server 2016 MS v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server 2019 MS v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server v20H2 DC v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows 10 v1507 v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server v1909 DC v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server v1909 MS v1.0.0	Windows	ACCESS CONTROL
Interactive logon: Machine account lockout threshold	MSCT Windows Server 2019 DC v1.0.0	Windows	ACCESS CONTROL
Lockout for failed password attempts - 'auth [default=die] pam_faillock.so authfail audit deny=5 unlock_time=900'	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	ACCESS CONTROL
Lockout for failed password attempts - 'auth required pam_tally2.so onerr=fail audit silent deny=5 unlock_time=900'	Tenable Cisco Firepower Management Center OS Best Practices Audit	Unix	ACCESS CONTROL
Reset account lockout counter after	MSCT Windows Server 1903 MS v1.19.9	Windows	ACCESS CONTROL
Reset account lockout counter after	MSCT Windows Server v1909 DC v1.0.0	Windows	ACCESS CONTROL
Reset account lockout counter after	MSCT Windows 10 1809 v1.0.0	Windows	ACCESS CONTROL
Reset account lockout counter after	MSCT Windows 10 v21H2 v1.0.0	Windows	ACCESS CONTROL
Reset account lockout counter after	MSCT Windows Server v1909 MS v1.0.0	Windows	ACCESS CONTROL
Reset lockout counter after	MSCT Windows Server 2016 DC v1.0.0	Windows	ACCESS CONTROL
Reset lockout counter after	MSCT Windows Server 2012 R2 MS v1.0.0	Windows	ACCESS CONTROL

Detections

Analytics

Item Search