Item Search

Name	Audit Name	Plugin	Category
1.1.10 Set 'aaa accounting network'	CIS Cisco IOS 15 L2 v4.1.1	Cisco	AUDIT AND ACCOUNTABILITY
1.1.11 Set 'aaa accounting system'	CIS Cisco IOS 15 L2 v4.1.1	Cisco	AUDIT AND ACCOUNTABILITY
1.2.6 Set 'exec-timeout' to less than or equal to 10 minutes for 'line aux 0'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	ACCESS CONTROL
1.2.9 Set 'exec-timeout' to less than or equal to 10 minutes 'line vty'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	ACCESS CONTROL
1.5.2 Unset 'private' for 'snmp-server community'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.5.4 Do not set 'RW' for any 'snmp-server community'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
1.7.1 Ensure 'HTTP source restriction' is set to an authorized IP address	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
1.10.11 Ensure 'logging trap severity ' is greater than or equal to '5'	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
2.1.3 Set 'no ip bootp server'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
2.1.8 Set 'no service pad'	CIS Cisco IOS 15 L1 v4.1.1	Cisco	ACCESS CONTROL, SYSTEM AND COMMUNICATIONS PROTECTION
2.3.1.4 Set 'key' for each 'ntp server'	CIS Cisco IOS 15 L2 v4.1.1	Cisco	AUDIT AND ACCOUNTABILITY
3.1.4 Set 'ip verify unicast source reachable-via'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny 127.0.0.0'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny 224.0.0.0'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny internal networks'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.2 Set inbound 'ip access-group' on the External Interface	CIS Cisco IOS 15 L2 v4.1.1	Cisco	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
3.3.1.4 Set 'address-family ipv4 autonomous-system'	CIS Cisco IOS 15 L2 v4.1.1	Cisco	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
3.3.3.3 Set 'key-string'	CIS Cisco IOS 15 L2 v4.1.1	Cisco	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
3.3.3.4 Set 'ip rip authentication key-chain'	CIS Cisco IOS 15 L2 v4.1.1	Cisco	CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION
Change the Size of the Anti-Replay Window	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
Ensure 'Host Name' is set	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'Image Integrity' is correct	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND INFORMATION INTEGRITY
Ensure 'logging buffer size' is greater than or equal to '524288' bytes (512kb)	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'logging buffered severity ' is greater than or equal to '3'	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'logging to Serial console' is disabled	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'logging with timestamps' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'OSPF authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'RIP authentication' is enabled	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP community string' is not the default string	Tenable Cisco Firepower Best Practices Audit	Cisco	IDENTIFICATION AND AUTHENTICATION
Ensure 'syslog hosts' is configured correctly	Tenable Cisco Firepower Best Practices Audit	Cisco	AUDIT AND ACCOUNTABILITY
Ensure 'threat-detection statistics' is set to 'tcp-intercept'	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure 'Unused Interfaces' is disable	Tenable Cisco Firepower Best Practices Audit	Cisco	ACCESS CONTROL
Ensure DHCP services are disabled for untrusted interfaces - dhcpd	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure intrusion prevention is enabled for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Identification and Authentication - Use out of band authentication - AAA - audit logging	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - AAA - audit logging	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - AAA - netconf logging	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Admin Authentication Order	Tenable Cisco Viptela SD-WAN - vManage	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Admin Authentication Order	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Authentication Order	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Authentication Order	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Server IP	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Server IP	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Secure Name/address Resolution Service - Configure DNS servers - Primary	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Secure Name/address Resolution Service - Configure DNS servers - Secondary	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Secure Name/address Resolution Service - Configure DNS servers - Secondary	Tenable Cisco Viptela SD-WAN - vManage	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
System Backup - Enable Backups - interval	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	CONTINGENCY PLANNING
System Backup - Enable Backups - interval	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	CONTINGENCY PLANNING
System Backup - Enable Backups - path	Tenable Cisco Viptela SD-WAN - vManage	Cisco_Viptela	CONTINGENCY PLANNING
System Backup - Enable Backups - path	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	CONTINGENCY PLANNING

Detections

Analytics

Item Search