| O365-OU-000008 - Outlook must be configured to prevent users overriding attachment security settings. | DISA STIG Microsoft Office 365 ProPlus v3r1 | Windows | ACCESS CONTROL |
| OH12-1X-000035 - Non-privileged accounts on the hosting system must only access OHS security-relevant information and functions through a distinct administrative account. | DISA STIG Oracle HTTP Server 12.1.3 v2r2 | Unix | ACCESS CONTROL |
| RHEL-07-020021 - The Red Hat Enterprise Linux operating system must confine SELinux users to roles that conform to least privilege. | DISA Red Hat Enterprise Linux 7 STIG v3r15 | Unix | ACCESS CONTROL |
| RHEL-07-020023 - The Red Hat Enterprise Linux operating system must elevate the SELinux context when an administrator calls the sudo command. | DISA Red Hat Enterprise Linux 7 STIG v3r15 | Unix | ACCESS CONTROL |
| RHEL-09-213030 - RHEL 9 must enable kernel parameters to enforce discretionary access control on hardlinks. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | ACCESS CONTROL |
| RHEL-09-213035 - RHEL 9 must enable kernel parameters to enforce discretionary access control on symlinks. | DISA Red Hat Enterprise Linux 9 STIG v2r2 | Unix | ACCESS CONTROL |
| SOL-11.1-090120 - The operating system must prevent non-privileged users from circumventing malicious code protection capabilities. | DISA STIG Solaris 11 X86 v3r1 | Unix | ACCESS CONTROL |
| WN12-RG-000001 - Standard user accounts must only have Read permissions to the Winlogon registry key. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-RG-000002 - Standard user accounts must only have Read permissions to the Active Setup\Installed Components registry key. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000001 - The Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000001 - The Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000003 - The Act as part of the operating system user right must not be assigned to any groups or accounts. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000007 - The Back up files and directories user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000011 - The Create a pagefile user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000011 - The Create a pagefile user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000012 - The Create a token object user right must not be assigned to any groups or accounts. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000013 - The Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000014 - The Create permanent shared objects user right must not be assigned to any groups or accounts. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000016 - The Debug programs user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000024 - The Generate security audits user right must only be assigned to Local Service and Network Service. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000024 - The Generate security audits user right must only be assigned to Local Service and Network Service. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000025 - The Impersonate a client after authentication user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000029 - The Lock pages in memory user right must not be assigned to any groups or accounts. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000034 - The Modify firmware environment values user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000035 - The Perform volume maintenance tasks user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000040 - The Restore files and directories user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000042 - The Take ownership of files or other objects user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 MS STIG v3r7 | Windows | ACCESS CONTROL |
| WN12-UR-000042 - The Take ownership of files or other objects user right must only be assigned to the Administrators group. | DISA Windows Server 2012 and 2012 R2 DC STIG v3r7 | Windows | ACCESS CONTROL |
| WN16-DC-000110 - Domain-created Active Directory Organizational Unit (OU) objects must have proper access control permissions. | DISA Windows Server 2016 STIG v2r9 | Windows | ACCESS CONTROL |
| WN16-MS-000420 - The 'Enable computer and user accounts to be trusted for delegation' user right must not be assigned to any groups or accounts on member servers - Enable computer and user accounts to be trusted for delegation user right must not be assigned to any groups or accounts on member servers. | DISA Windows Server 2016 STIG v2r9 | Windows | ACCESS CONTROL |
| WN16-UR-000030 - The Act as part of the operating system user right must not be assigned to any groups or accounts. | DISA Windows Server 2016 STIG v2r9 | Windows | ACCESS CONTROL |
| WN16-UR-000080 - The Create a pagefile user right must only be assigned to the Administrators group. | DISA Windows Server 2016 STIG v2r9 | Windows | ACCESS CONTROL |
| WN16-UR-000100 - The Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows Server 2016 STIG v2r9 | Windows | ACCESS CONTROL |
| WN19-DC-000010 - Windows Server 2019 must only allow administrators responsible for the domain controller to have Administrator rights on the system. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-DC-000070 - Windows Server 2019 permissions on the Active Directory data files must only allow System and Administrators access. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-DC-000090 - Windows Server 2019 Active Directory Group Policy objects must have proper access control permissions. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-DC-000350 - Windows Server 2019 Add workstations to domain user right must only be assigned to the Administrators group on domain controllers. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-MS-000010 - Windows Server 2019 must only allow Administrators responsible for the member server or standalone or nondomain-joined system to have Administrator rights on the system. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-MS-000060 - Windows Server 2019 must restrict remote calls to the Security Account Manager (SAM) to Administrators on domain-joined member servers and standalone or nondomain-joined systems. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000010 - Windows Server 2019 Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000040 - Windows Server 2019 Back up files and directories user right must only be assigned to the Administrators group. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000050 - Windows Server 2019 Create a pagefile user right must only be assigned to the Administrators group. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000060 - Windows Server 2019 Create a token object user right must not be assigned to any groups or accounts. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000070 - Windows Server 2019 Create global objects user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000090 - Windows Server 2019 Create symbolic links user right must only be assigned to the Administrators group. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000100 - Windows Server 2019 Debug programs: user right must only be assigned to the Administrators group. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000120 - Windows Server 2019 Generate security audits user right must only be assigned to Local Service and Network Service. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000130 - Windows Server 2019 Impersonate a client after authentication user right must only be assigned to Administrators, Service, Local Service, and Network Service. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000160 - Windows Server 2019 Lock pages in memory user right must not be assigned to any groups or accounts. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
| WN19-UR-000180 - Windows Server 2019 Modify firmware environment values user right must only be assigned to the Administrators group. | DISA Windows Server 2019 STIG v3r2 | Windows | ACCESS CONTROL |
