Item Search

Name	Audit Name	Plugin	Category
1.1.1.2 RADIUS	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	ACCESS CONTROL
1.1.1.3 Configure AAA Authentication - RADIUS if applicable	CIS Cisco NX-OS L1 v1.1.0	Cisco	ACCESS CONTROL
1.1.5 Local users, groups and tasks	CIS Cisco IOS XR 7.x v1.0.0 L2	Cisco	ACCESS CONTROL
1.21 Ensure IAM users are managed centrally via identity federation or AWS Organizations for multi-account environments	CIS Amazon Web Services Foundations v4.0.1 L2	amazon_aws	ACCESS CONTROL
2.2 Ensure redundant remote authentication servers are configured	CIS F5 Networks v1.0.0 L2	F5	ACCESS CONTROL
2.2.6 Ensure 'REMOTE_LOGIN_PASSWORDFILE' Is Set to 'NONE'	CIS Oracle Server 19c DB Unified Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.7 Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.2.8 Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE'	CIS Oracle Server 19c DB Traditional Auditing v1.2.0	OracleDB	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	ACCESS CONTROL
2.3.1.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 NG	Windows	ACCESS CONTROL
2.3.9.4 (L1) Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.9.4 (L1) Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
2.3.9.4 (L1) Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 Domain Controller Level 1 v3.3.1	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 MS	Windows	ACCESS CONTROL
2.3.9.4 Ensure 'Microsoft network server: Disconnect clients when logon hours expire' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2022 v1.0.0 L1 DC	Windows	ACCESS CONTROL
2.3.11.6 (L1) Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Windows Server 2012 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.11.6 (L1) Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Windows Server 2012 R2 DC L1 v3.0.0	Windows	ACCESS CONTROL
2.3.11.6 (L1) Ensure 'Network security: Force logoff when logon hours expire' is set to 'Enabled'	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1	Windows	ACCESS CONTROL
2.8 Ensure vSphere Authentication Proxy is used when adding hosts to Active Directory	CIS VMware ESXi 6.7 v1.3.0 Level 1	VMware	ACCESS CONTROL
3.1 Ensure 'Server Authentication' Property is set to 'Windows Authentication Mode'	CIS Microsoft SQL Server 2019 v1.4.0 L1 Database Engine	MS_SQLDB	ACCESS CONTROL
3.4 Ensure SQL Authentication is not used in contained databases	CIS SQL Server 2016 Database L1 AWS RDS v1.4.0	MS_SQLDB	ACCESS CONTROL
3.11.3.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	ACCESS CONTROL
3.11.27.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Intune for Windows 11 v3.0.1 L1	Windows	ACCESS CONTROL
5.6 (L2) Ensure Strict Lockdown mode is enabled	CIS VMware ESXi 7.0 v1.4.0 L2	VMware	ACCESS CONTROL
9.4 Ensure 'safRegistry' is configured	CIS IBM WebSphere Liberty v1.0.0 L1	Unix	ACCESS CONTROL
9.5 Ensure that Register with Entra ID is enabled on App Service	CIS Microsoft Azure Foundations v3.0.0 L1	microsoft_azure	ACCESS CONTROL
9.6 Ensure that 'Basic Authentication' is 'Disabled'	CIS Microsoft Azure Foundations v3.0.0 L1	microsoft_azure	ACCESS CONTROL
18.9.6.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 DC	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + NG	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Windows Server 2012 R2 MS L1 v3.0.0	Windows	ACCESS CONTROL
18.10.5.1 (L1) Ensure 'Allow Microsoft accounts to be optional' is set to 'Enabled'	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1 BL	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows 10 Enterprise v3.0.0 L1	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2019 v3.0.1 L1 MS	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2022 v3.0.0 L1 Member Server	Windows	ACCESS CONTROL
18.10.41.1 (L1) Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows 11 Enterprise v3.0.0 L1 + BL	Windows	ACCESS CONTROL
18.10.41.1 Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2022 STIG v2.0.0 L1 Member Server	Windows	ACCESS CONTROL
18.10.41.1 Ensure 'Block all consumer Microsoft account user authentication' is set to 'Enabled'	CIS Microsoft Windows Server 2016 STIG v3.0.0 L1 MS	Windows	ACCESS CONTROL
45.1 (L1) Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'	CIS Microsoft Intune for Windows 10 v3.0.1 L1	Windows	ACCESS CONTROL

Detections

Analytics

Item Search