Item Search

NameAudit NamePluginCategory
AIOS-17-014800 - Apple iOS/iPadOS 17 must be configured to disable 'Auto Unlock' of the iPhone by an Apple Watch - Auto Unlock of the iPhone by an Apple Watch.AirWatch - DISA Apple iOS/iPadOS 17 v2r1MDM

ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION

AS24-U1-000690 - Non-privileged accounts on the hosting system must only access Apache web server security-relevant information and functions through a distinct administrative account.DISA STIG Apache Server 2.4 Unix Server v3r1Unix

ACCESS CONTROL

AS24-U1-000690 - Non-privileged accounts on the hosting system must only access Apache web server security-relevant information and functions through a distinct administrative account.DISA STIG Apache Server 2.4 Unix Server v3r1 MiddlewareUnix

ACCESS CONTROL

AS24-W1-000690 - Non-privileged accounts on the hosting system must only access Apache web server security-relevant information and functions through a distinct administrative account.DISA STIG Apache Server 2.4 Windows Server v3r1Windows

ACCESS CONTROL

EP11-00-007400 - The EDB Postgres Advanced Server must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.EDB PostgreSQL Advanced Server v11 DB Audit v2r4PostgreSQLDB

ACCESS CONTROL

OL07-00-020021 - The Oracle Linux operating system must confine SELinux users to roles that conform to least privilege.DISA Oracle Linux 7 STIG v2r14Unix

ACCESS CONTROL

OL07-00-020022 - The Oracle Linux operating system must not allow privileged accounts to utilize SSH.DISA Oracle Linux 7 STIG v2r14Unix

ACCESS CONTROL

PGS9-00-011700 - PostgreSQL must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.DISA STIG PostgreSQL 9.x on RHEL DB v2r5PostgreSQLDB

ACCESS CONTROL

PPS9-00-007400 - The EDB Postgres Advanced Server must prevent non-privileged users from executing privileged functions, to include disabling, circumventing, or altering implemented security safeguards/countermeasures.EDB PostgreSQL Advanced Server DB Audit v2r3PostgreSQLDB

ACCESS CONTROL

SOL-11.1-090120 - The operating system must prevent non-privileged users from circumventing malicious code protection capabilities.DISA STIG Solaris 11 SPARC v3r1Unix

ACCESS CONTROL

WN10-00-000070 - Only accounts responsible for the administration of a system must have Administrator rights on the system.DISA Windows 10 STIG v3r2Windows

ACCESS CONTROL

WN10-UR-000015 - The Act as part of the operating system user right must not be assigned to any groups or accounts.DISA Windows 10 STIG v3r2Windows

ACCESS CONTROL

WN10-UR-000050 - The Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Windows 10 STIG v3r2Windows

ACCESS CONTROL

WN10-UR-000060 - The Create symbolic links user right must only be assigned to the Administrators group.DISA Windows 10 STIG v3r2Windows

ACCESS CONTROL

WN10-UR-000095 - The Enable computer and user accounts to be trusted for delegation user right must not be assigned to any groups or accounts.DISA Windows 10 STIG v3r2Windows

ACCESS CONTROL

WN10-UR-000150 - The Profile single process user right must only be assigned to the Administrators group.DISA Windows 10 STIG v3r2Windows

ACCESS CONTROL

WN12-AD-000001-DC - Active Directory data files must have proper access control permissions.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-AD-000002-DC - The Active Directory SYSVOL directory must have the proper access control permissions.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-AD-000003-DC - Active Directory Group Policy objects must have proper access control permissions.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-AD-000005-DC - Domain created Active Directory Organizational Unit (OU) objects must have proper access control permissions.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-GE-000004-DC - Only administrators responsible for the domain controller must have Administrator rights on the system.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-GE-000004-MS - Only administrators responsible for the member server must have Administrator rights on the system.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-RG-000002 - Standard user accounts must only have Read permissions to the Active Setup\Installed Components registry key.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-RG-000004 - Anonymous access to the registry must be restrictedDISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000007 - The Back up files and directories user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000015 - The Create symbolic links user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000016 - The Debug programs user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000022-MS - Unauthorized accounts must not have the Enable computer and user accounts to be trusted for delegation user right on member servers.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000023 - The Force shutdown from a remote system user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000025 - The Impersonate a client after authentication user right must only be assigned to Administrators, Service, Local Service, and Network Service.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000027 - The Increase scheduling priority user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 MS STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000036 - The Profile single process user right must only be assigned to the Administrators group.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN12-UR-000044-DC - Unauthorized accounts must not have the Add workstations to domain user right.DISA Windows Server 2012 and 2012 R2 DC STIG v3r7Windows

ACCESS CONTROL

WN16-DC-000070 - Permissions on the Active Directory data files must only allow System and Administrators access.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-DC-000090 - Active Directory Group Policy objects must have proper access control permissions.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-DC-000100 - The Active Directory Domain Controllers Organizational Unit (OU) object must have the proper access control permissions.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-DC-000420 - The Enable computer and user accounts to be trusted for delegation user right must only be assigned to the Administrators group on domain controllers.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-MS-000010 - Only administrators responsible for the member server or standalone or nondomain-joined system must have Administrator rights on the system.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000070 - The Back up files and directories user right must only be assigned to the Administrators group.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000090 - The Create a token object user right must not be assigned to any groups or accounts.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000110 - The Create permanent shared objects user right must not be assigned to any groups or accounts.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000130 - The Debug programs user right must only be assigned to the Administrators group.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000200 - The Force shutdown from a remote system user right must only be assigned to the Administrators group.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000250 - The Lock pages in memory user right must not be assigned to any groups or accounts.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000270 - The Modify firmware environment values user right must only be assigned to the Administrators group.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000290 - The Profile single process user right must only be assigned to the Administrators group.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN16-UR-000310 - The Take ownership of files or other objects user right must only be assigned to the Administrators group.DISA Windows Server 2016 STIG v2r9Windows

ACCESS CONTROL

WN19-DC-000100 - Windows Server 2019 Active Directory Domain Controllers Organizational Unit (OU) object must have the proper access control permissions.DISA Windows Server 2019 STIG v3r2Windows

ACCESS CONTROL

WN19-MS-000130 - Windows Server 2019 'Enable computer and user accounts to be trusted for delegation' user right must not be assigned to any groups or accounts on domain-joined member servers and standalone or nondomain-joined systems.DISA Windows Server 2019 STIG v3r2Windows

ACCESS CONTROL

WN19-UR-000150 - Windows Server 2019 Load and unload device drivers user right must only be assigned to the Administrators group.DISA Windows Server 2019 STIG v3r2Windows

ACCESS CONTROL