| APPL-11-002069 - The macOS system must authenticate peripherals before establishing a connection. | DISA STIG Apple macOS 11 v1r8 | Unix | IDENTIFICATION AND AUTHENTICATION |
| APPL-11-002069 - The macOS system must authenticate peripherals before establishing a connection. | DISA STIG Apple macOS 11 v1r5 | Unix | IDENTIFICATION AND AUTHENTICATION |
| APPL-14-005090 - The macOS system must authorize USB devices before allowing connection. | DISA Apple macOS 14 (Sonoma) STIG v1r2 | Unix | IDENTIFICATION AND AUTHENTICATION |
| ARST-RT-000480 - The PE router providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm. | DISA STIG Arista MLS EOS 4.2x Router v1r1 | Arista | IDENTIFICATION AND AUTHENTICATION |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - aaa group | DISA STIG Cisco NX-OS Switch L2S v1r1 | Cisco | AUDIT AND ACCOUNTABILITY |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - aaa group | DISA STIG Cisco NX-OS Switch L2S v2r1 | Cisco | AUDIT AND ACCOUNTABILITY |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - dot1x port-control auto | DISA STIG Cisco NX-OS Switch L2S v2r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - dot1x port-control auto | DISA STIG Cisco NX-OS Switch L2S v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - interface dot1x | DISA STIG Cisco NX-OS Switch L2S v2r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - interface dot1x | DISA STIG Cisco NX-OS Switch L2S v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - radius server | DISA STIG Cisco NX-OS Switch L2S v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-L2-000080 - The Cisco switch must authenticate all endpoint devices before establishing any connection - radius server | DISA STIG Cisco NX-OS Switch L2S v2r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-RT-000660 - The Cisco PE router providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm. | DISA STIG Cisco IOS Router RTR v1r4 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-RT-000660 - The Cisco PE switch providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm - ip prefix list | DISA STIG Cisco NX-OS Switch RTR v1r1 | Cisco | ACCESS CONTROL |
| CISC-RT-000660 - The Cisco PE switch providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm - mpls label protocol ldp | DISA STIG Cisco IOS Switch RTR v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-RT-000660 - The Cisco PE switch providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm - mpls ldp configurations | DISA STIG Cisco NX-OS Switch RTR v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-RT-000660 - The Cisco PE switch providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm - mpls ldp neighbor | DISA STIG Cisco IOS Switch RTR v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-RT-000910 - The Cisco Multicast Source Discovery Protocol (MSDP) router must be configured to authenticate all received MSDP packets. | DISA STIG Cisco IOS Router RTR v1r4 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| CISC-RT-000910 - The Cisco Multicast Source Discovery Protocol (MSDP) switch must be configured to authenticate all received MSDP packets. | DISA STIG Cisco NX-OS Switch RTR v1r1 | Cisco | IDENTIFICATION AND AUTHENTICATION |
| JUEX-L2-000070 - The Juniper EX switch must be configured to authenticate all network-connected endpoint devices before establishing any connection. | DISA Juniper EX Series Layer 2 Switch v1r2 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| JUEX-RT-000560 - The router providing MPLS L2VPN services must be configured to authenticate targeted LDP sessions used to exchange VC information using a FIPS-approved message authentication code algorithm. | DISA Juniper EX Series Router v1r3 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| JUEX-RT-000570 - The Juniper Multicast Source Discovery Protocol (MSDP) router must be configured to authenticate all received MSDP packets. | DISA Juniper EX Series Router v1r3 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| JUNI-RT-000640 - The Juniper PE router providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm - key-chain | DISA STIG Juniper Router RTR v1r4 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| JUNI-RT-000640 - The Juniper PE router providing MPLS Layer 2 Virtual Private Network (L2VPN) services must be configured to authenticate targeted Label Distribution Protocol (LDP) sessions used to exchange virtual circuit (VC) information using a FIPS-approved message authentication code algorithm - ldp | DISA STIG Juniper Router RTR v1r4 | Juniper | IDENTIFICATION AND AUTHENTICATION |
| JUNI-RT-000900 - The Juniper Multicast Source Discovery Protocol (MSDP) router must be configured to authenticate all received MSDP packets. | DISA STIG Juniper Router RTR v1r4 | Juniper | ACCESS CONTROL |
| OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - automount | DISA Oracle Linux 7 STIG v2r9 | Unix | |
| OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - autorun-never | DISA Oracle Linux 7 STIG v2r9 | Unix | |
| OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks automount-open | DISA Oracle Linux 7 STIG v2r11 | Unix | |
| OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks automount-open | DISA Oracle Linux 7 STIG v2r7 | Unix | |
| OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required - locks autorun-never | DISA Oracle Linux 7 STIG v2r7 | Unix | |
| OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required. | DISA Oracle Linux 7 STIG v2r7 | Unix | |
| OL08-00-040081 - OL 8 must be configured to disable USB mass storage. | DISA Oracle Linux 8 STIG v1r1 | Unix | |
| OL08-00-040139 - OL 8 must have the USBGuard installed. | DISA Oracle Linux 8 STIG v1r10 | Unix | IDENTIFICATION AND AUTHENTICATION |
| OL08-00-040140 - OL 8 must block unauthorized peripherals before establishing a connection. | DISA Oracle Linux 8 STIG v1r10 | Unix | IDENTIFICATION AND AUTHENTICATION |
| OL08-00-040141 - OL 8 must enable the USBGuard. | DISA Oracle Linux 8 STIG v1r10 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-08-040139 - RHEL 8 must have the USBGuard installed. | DISA Red Hat Enterprise Linux 8 STIG v1r14 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-08-040140 - RHEL 8 must block unauthorized peripherals before establishing a connection. | DISA Red Hat Enterprise Linux 8 STIG v1r14 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-08-040141 - RHEL 8 must enable the USBGuard. | DISA Red Hat Enterprise Linux 8 STIG v1r14 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-09-291015 - RHEL 9 must have the USBGuard package installed. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-09-291020 - RHEL 9 must have the USBGuard package enabled. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| RHEL-09-291030 - RHEL 9 must block unauthorized peripherals before establishing a connection. | DISA Red Hat Enterprise Linux 9 STIG v1r3 | Unix | IDENTIFICATION AND AUTHENTICATION |
| SLES-15-010240 - The SUSE operating system must disable the file system automounter unless required. | DISA SLES 15 STIG v1r10 | Unix | |
| SLES-15-010240 - The SUSE operating system must disable the file system automounter unless required. | DISA SLES 15 STIG v1r9 | Unix | |
| SLES-15-010240 - The SUSE operating system must disable the file system automounter unless required. | DISA SLES 15 STIG v1r12 | Unix | |
| SLES-15-010480 - The SUSE operating system must disable the USB mass storage kernel module. | DISA SLES 15 STIG v1r13 | Unix | IDENTIFICATION AND AUTHENTICATION |
| UBTU-20-010461 - The Ubuntu operating system must disable automatic mounting of Universal Serial Bus (USB) mass storage driver. | DISA STIG Ubuntu 20.04 LTS v1r12 | Unix | IDENTIFICATION AND AUTHENTICATION |
| UBTU-22-291010 - Ubuntu 22.04 LTS must disable automatic mounting of Universal Serial Bus (USB) mass storage driver. | DISA STIG Canonical Ubuntu 22.04 LTS v1r1 | Unix | IDENTIFICATION AND AUTHENTICATION |
| WDNS-IA-000003 - The secondary Windows DNS name servers must cryptographically authenticate zone transfers from primary name servers. | DISA Microsoft Windows 2012 Server DNS STIG v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WDNS-IA-000004 - The Windows DNS primary server must only send zone transfers to a specific list of secondary name servers. | DISA Microsoft Windows 2012 Server DNS STIG v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
| WDNS-IA-000005 - The Windows 2012 DNS Server must provide its identity with returned DNS information by enabling DNSSEC and TSIG/SIG(0). | DISA Microsoft Windows 2012 Server DNS STIG v1r14 | Windows | SYSTEM AND COMMUNICATIONS PROTECTION |
