Item Search

Name	Audit Name	Plugin	Category
Fortigate - Auto backup is configured - 'FortiManager'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONTINGENCY PLANNING
Fortigate - AV License - Not Expired	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Close port TCP 113 on external interface	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Disable insecure services - TELNET	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	CONFIGURATION MANAGEMENT
Fortigate - Does not use self-signed certificate - 'admin'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Enable logs of failed connection attempts	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Ensure default admin usernames are not used	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - External Logging - 'fortianalyzer'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - External Logging - 'syslog3'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - External Logging - 'syslogd'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - full-final-warning-threshold <= 95%	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - full-first-warning-threshold <= 75%	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - HTTPS/SSH admin access strong ciphers	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Inactivity timeout - 'console' <= 5	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - Inactivity timeout - 'global' <= 5	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - IPS database - extended	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND INFORMATION INTEGRITY
Fortigate - Local Logging is enabled	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Log WAN optimization messages	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - Password Complexity - 1 lowercase letter	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Password Complexity - 4 char difference	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - Require that passwords expire	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - reset-sessionless-tcp disabled	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND COMMUNICATIONS PROTECTION
Fortigate - SNMP community string - 'private'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - SNMP community string - 'public'	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	IDENTIFICATION AND AUTHENTICATION
Fortigate - SNMP v3 uses AES instead of DES	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	SYSTEM AND COMMUNICATIONS PROTECTION
Fortigate - SSH login grace time <= 30 seconds	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Fortigate - System event logging	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - VPN event logging	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	AUDIT AND ACCOUNTABILITY
Fortigate - VPN SSL cipher suite > than 128 bits	TNS Fortigate FortiOS Best Practices v2.0.0	FortiGate	ACCESS CONTROL
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Consumer Secret'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = Facebook Default Scope'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Consumer Secret'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Default Scope'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS is not configured'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT
Salesforce.com : AuthConfig - 'Auth Providers = MicrosoftACS Token Endpoint URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Authorize Endpoint URL'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers = OpenIdConnect Execution User ID'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : AuthConfig - 'Auth Providers in use'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Data Access Control - 'Enable CSRF protection on GET requests on non-setup pages = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Email Services - 'IsErrorRoutingEnabled = True'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND INFORMATION INTEGRITY
Salesforce.com : Object Permissions - 'DefaultLeadAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Object Permissions - 'DefaultOpportunityAccess should not be Public Read/Write or Public Read/Write/Transfer'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Password Policies - 'lockout period >= 30 minutes'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Session Security - 'Enable clickjack protection for non-setup customer Visualforce pages = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	SYSTEM AND COMMUNICATIONS PROTECTION
Salesforce.com : Setting Session Security - 'Lock session to IP = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	ACCESS CONTROL
Salesforce.com : Setting Session Security - 'Review Salesforce console User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Salesforce CRM Content User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review user types'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Review Work.com User'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com
Salesforce.com : Setting Session Security - 'Use POST requests for cross-domain sessions = true'	TNS Salesforce Best Practices Audit v1.2.0	Salesforce.com	CONFIGURATION MANAGEMENT

Detections

Analytics

Item Search