| AIX7-00-002200 - The AIX audit configuration files must be owned by root. | DISA STIG AIX 7.x v2r5 | Unix | |
| AIX7-00-002201 - The AIX audit configuration files must be group-owned by audit. | DISA STIG AIX 7.x v2r5 | Unix | |
| AIX7-00-002201 - The AIX audit configuration files must be group-owned by audit. | DISA STIG AIX 7.x v2r8 | Unix | |
| AIX7-00-002202 - The AIX audit configuration files must be set to 640 or less permissive. | DISA STIG AIX 7.x v2r5 | Unix | |
| AIX7-00-002202 - The AIX audit configuration files must be set to 640 or less permissive. | DISA STIG AIX 7.x v2r8 | Unix | |
| DB2X-00-000700 - DB2 must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - SYSADM_GROUP | DISA STIG IBM DB2 v10.5 LUW v1r4 Database | IBM_DB2DB | AUDIT AND ACCOUNTABILITY |
| EP11-00-001100 - The EDB Postgres Advanced Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - data\* | EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r2 | Windows | |
| EP11-00-001100 - The EDB Postgres Advanced Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - postgresql.conf | EDB PostgreSQL Advanced Server v11 Windows OS Audit v2r2 | Windows | |
| EP11-00-001100 - The EDB Postgres Advanced Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. - data dir | EDB PostgreSQL Advanced Server v11 Windows OS Audit v1r1 | Windows | CONFIGURATION MANAGEMENT |
| EP11-00-001100 - The EDB Postgres Advanced Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. - postgresql.conf | EDB PostgreSQL Advanced Server v11 Windows OS Audit v1r1 | Windows | CONFIGURATION MANAGEMENT |
| ESXI-06-100030 - The VMM must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA STIG VMware vSphere 6.x ESXi v1r5 | VMware | AUDIT AND ACCOUNTABILITY |
| ESXI-06-100030 - The VMM must allow only the ISSM to select which auditable events are to be audited. | DISA STIG VMware vSphere 6.x ESXi v1r4 | VMware | AUDIT AND ACCOUNTABILITY |
| O121-C2-006900 - The DBMS must allow designated organizational personnel to select which auditable events are to be audited by the database. | DISA STIG Oracle 12c v2r6 Database | OracleDB | |
| PANW-NM-000023 - The Palo Alto Networks security platform must allow only the ISSM (or individuals or roles appointed by the ISSM) in the Audit Administrator (auditadmin) role, or in a custom role with full access to audit logs, or any account that has full access to audit logs - auditadmin role. | DISA STIG Palo Alto NDM v1r4 | Palo_Alto | |
| PGS9-00-002600 - PostgreSQL must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - Config | DISA STIG PostgreSQL 9.x on RHEL OS v2r3 | Unix | |
| PGS9-00-002600 - PostgreSQL must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - Data | DISA STIG PostgreSQL 9.x on RHEL OS v2r3 | Unix | |
| PHTN-30-000019 - The Photon operating system must allow only the information system security manager (ISSM) (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA STIG VMware vSphere 7.0 Photon OS v1r3 | Unix | AUDIT AND ACCOUNTABILITY |
| PPS9-00-001100 - The EDB Postgres Advanced Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | EDB PostgreSQL Advanced Server OS Linux Audit v1r7 | Unix | CONFIGURATION MANAGEMENT |
| PPS9-00-001100 - The EDB Postgres Advanced Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | EDB PostgreSQL Advanced Server OS Linux Audit v2r2 | Unix | |
| RHEL-08-030610 - RHEL 8 must allow only the Information System Security Manager (ISSM) (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA Red Hat Enterprise Linux 8 STIG v1r14 | Unix | AUDIT AND ACCOUNTABILITY |
| RHEL-09-653110 - RHEL 9 must allow only the information system security manager (ISSM) (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | AUDIT AND ACCOUNTABILITY |
| RHEL-09-653115 - RHEL 9 /etc/audit/auditd.conf file must have 0640 or less permissive to prevent unauthorized access. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | AUDIT AND ACCOUNTABILITY |
| SHPT-00-000315 - SharePoint must allow designated organizational personnel to select which auditable events are to be audited by specific components of the system. | DISA STIG SharePoint 2010 v1r9 | Windows | AUDIT AND ACCOUNTABILITY |
| SP13-00-000055 - SharePoint must allow designated organizational personnel to select which auditable events are to be audited by specific components of the system. | DISA STIG SharePoint 2013 v2r1 | Windows | |
| SPLK-CL-000140 - Splunk Enterprise must allow only the individuals appointed by the Information System Security Manager (ISSM) to have full admin rights to the system. | DISA STIG Splunk Enterprise 8.x for Linux v1r5 STIG REST API | Splunk | AUDIT AND ACCOUNTABILITY |
| SPLK-CL-000270 - Splunk Enterprise must allow only the Information System Security Manager (ISSM) (or individuals or roles appointed by the ISSM) to be assigned to the Power User role. | DISA STIG Splunk Enterprise 7.x for Windows v2r3 REST API | Splunk | |
| SQL6-D0-000700 - SQL Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited - permissions | DISA STIG SQL Server 2016 Database Audit v2r5 | MS_SQLDB | |
| SQL6-D0-004400 - SQL Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA STIG SQL Server 2016 Instance DB Audit v2r11 | MS_SQLDB | |
| SQL6-D0-004400 - SQL Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA STIG SQL Server 2016 Instance DB Audit v2r8 | MS_SQLDB | |
| SQL6-D0-004400 - SQL Server must allow only the ISSM (or individuals or roles appointed by the ISSM) to select which auditable events are to be audited. | DISA STIG SQL Server 2016 Instance DB Audit v2r10 | MS_SQLDB | |
| UBTU-18-010311 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users - audit.rules | DISA STIG Ubuntu 18.04 LTS v2r7 | Unix | |
| UBTU-18-010311 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users - audit.rules | DISA STIG Ubuntu 18.04 LTS v2r10 | Unix | |
| UBTU-18-010311 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users - auditd.conf | DISA STIG Ubuntu 18.04 LTS v2r10 | Unix | |
| UBTU-18-010311 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users - rules.d/* | DISA STIG Ubuntu 18.04 LTS v2r10 | Unix | |
| UBTU-18-010311 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users - rules.d/* | DISA STIG Ubuntu 18.04 LTS v2r8 | Unix | |
| UBTU-18-010311 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users. | DISA STIG Ubuntu 18.04 LTS v2r11 | Unix | |
| UBTU-18-010312 - The Ubuntu operating system must permit only authorized accounts to own the audit configuration files - audit.rules | DISA STIG Ubuntu 18.04 LTS v2r8 | Unix | |
| UBTU-18-010312 - The Ubuntu operating system must permit only authorized accounts to own the audit configuration files - auditd.conf | DISA STIG Ubuntu 18.04 LTS v2r7 | Unix | |
| UBTU-18-010312 - The Ubuntu operating system must permit only authorized accounts to own the audit configuration files - rules.d/* | DISA STIG Ubuntu 18.04 LTS v2r8 | Unix | |
| UBTU-18-010312 - The Ubuntu operating system must permit only authorized accounts to own the audit configuration files. | DISA STIG Ubuntu 18.04 LTS v2r11 | Unix | |
| UBTU-18-010312 - The Ubuntu operating system must permit only authorized accounts to own the audit configuration files. | DISA STIG Ubuntu 18.04 LTS v2r13 | Unix | |
| UBTU-18-010313 - The Ubuntu operating system must permit only authorized groups to own the audit configuration files - audit.rules | DISA STIG Ubuntu 18.04 LTS v2r7 | Unix | |
| UBTU-18-010313 - The Ubuntu operating system must permit only authorized groups to own the audit configuration files - audit.rules | DISA STIG Ubuntu 18.04 LTS v2r10 | Unix | |
| UBTU-18-010313 - The Ubuntu operating system must permit only authorized groups to own the audit configuration files - auditd.conf | DISA STIG Ubuntu 18.04 LTS v2r7 | Unix | |
| UBTU-18-010313 - The Ubuntu operating system must permit only authorized groups to own the audit configuration files - rules.d/* | DISA STIG Ubuntu 18.04 LTS v2r7 | Unix | |
| UBTU-20-010133 - The Ubuntu operating system must be configured so that audit configuration files are not write-accessible by unauthorized users. | DISA STIG Ubuntu 20.04 LTS v1r12 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-20-010135 - The Ubuntu operating system must permit only authorized groups to own the audit configuration files. | DISA STIG Ubuntu 20.04 LTS v1r12 | Unix | AUDIT AND ACCOUNTABILITY |
| UBTU-22-653070 - Ubuntu 22.04 LTS must permit only authorized accounts to own the audit configuration files. | DISA STIG Canonical Ubuntu 22.04 LTS v1r1 | Unix | AUDIT AND ACCOUNTABILITY |
| VCPG-67-000003 - VMware Postgres configuration files must not be accessible by unauthorized users. | DISA STIG VMware vSphere 6.7 PostgreSQL v1r2 | Unix | AUDIT AND ACCOUNTABILITY |
| WDNS-AU-000007 - The Windows 2012 DNS Server logging criteria must only be configured by the ISSM or individuals appointed by the ISSM - manage | DISA Microsoft Windows 2012 Server DNS STIG v1r14 | Windows | ACCESS CONTROL |
