| CASA-ND-000090 - The Cisco ASA must be configured to automatically audit account creation - Buffer Enabled | DISA STIG Cisco ASA NDM v2r1 | Cisco | ACCESS CONTROL |
| CASA-ND-000100 - The Cisco ASA must be configured to automatically audit account modification - Buffer Enabled | DISA STIG Cisco ASA NDM v2r1 | Cisco | ACCESS CONTROL |
| CASA-ND-000110 - The Cisco ASA must be configured to automatically audit account-disabling actions - Buffer Enabled | DISA STIG Cisco ASA NDM v2r1 | Cisco | ACCESS CONTROL |
| CASA-ND-000110 - The Cisco ASA must be configured to automatically audit account-disabling actions - logging enabled | DISA STIG Cisco ASA NDM v2r1 | Cisco | ACCESS CONTROL |
| CASA-ND-000120 - The Cisco ASA must be configured to automatically audit account removal actions - Buffer Enabled | DISA STIG Cisco ASA NDM v2r1 | Cisco | ACCESS CONTROL |
| EX19-MB-000016 Exchange must have administrator audit logging enabled. | DISA Microsoft Exchange 2019 Mailbox Server STIG v2r1 | Windows | ACCESS CONTROL |
| FGFW-ND-000005 - The FortiGate device must automatically audit account creation | DISA Fortigate Firewall NDM STIG v1r4 | FortiGate | ACCESS CONTROL |
| JUNI-ND-000090 - The Juniper router must be configured to automatically audit account creation. | DISA STIG Juniper Router NDM v1r4 | Juniper | ACCESS CONTROL |
| JUNI-ND-000090 - The Juniper router must be configured to automatically audit account creation. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-000100 - The Juniper router must be configured to automatically audit account modification. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-000110 - The Juniper router must be configured to automatically audit account disabling actions. | DISA STIG Juniper Router NDM v1r4 | Juniper | ACCESS CONTROL |
| JUNI-ND-000110 - The Juniper router must be configured to automatically audit account disabling actions. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-000120 - The Juniper router must be configured to automatically audit account removal actions. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-000120 - The Juniper router must be configured to automatically audit account removal actions. | DISA STIG Juniper Router NDM v1r4 | Juniper | ACCESS CONTROL |
| JUNI-ND-000210 - The Juniper router must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-000330 - The Juniper router must be configured to generate audit records containing the full-text recording of privileged commands. | DISA STIG Juniper Router NDM v1r4 | Juniper | ACCESS CONTROL |
| JUNI-ND-000330 - The Juniper router must be configured to generate audit records containing the full-text recording of privileged commands. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-001230 - The Juniper router must be configured to generate log records when administrator privileges are modified. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| JUNI-ND-001240 - The Juniper router must be configured to generate log records when administrator privileges are deleted. | DISA STIG Juniper Router NDM v1r5 | Juniper | ACCESS CONTROL |
| PHTN-30-000045 - The Photon operating system must audit all account removal actions. | DISA STIG VMware vSphere 7.0 Photon OS v1r3 | Unix | ACCESS CONTROL |
| PHTN-67-000001 - The Photon operating system must audit all account creations - groupadd | DISA STIG VMware vSphere 6.7 Photon OS v1r6 | Unix | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 15' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 18' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 20' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 102' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 103' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 105' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 110' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 111' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 117' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 128' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 130' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 132' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 134' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 135' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 152' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 170' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 171' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 175' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-001900 - SQL Server must automatically audit account modification - 'Event ID 176' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 20' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 102' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 103' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 106' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 107' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 108' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 109' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 110' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| SQL2-00-023300 - SQL Server must notify appropriate individuals when accounts are modified - 'Event ID 130' | DISA STIG SQL Server 2012 DB Instance Security v1r20 | MS_SQLDB | ACCESS CONTROL |
| WN11-AU-000040 - The system must be configured to audit Account Management - User Account Management successes. | DISA Windows 11 STIG v2r1 | Windows | ACCESS CONTROL |
