| 2.3.2.2 (L1) Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled' | CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker | Windows | AUDIT AND ACCOUNTABILITY |
| 2.3.2.2 Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 9.1.8 Ensure 'Windows Firewall: Domain: Logging: Log successful connections' is set to 'Yes' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 9.2.5 Ensure 'Windows Firewall: Private: Logging: Name' is set to '%SystemRoot%\System32\logfiles\firewall\privatefw.log' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 9.2.8 Ensure 'Windows Firewall: Private: Logging: Log successful connections' is set to 'Yes' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 9.3.9 Ensure 'Windows Firewall: Public: Logging: Log dropped packets' is set to 'Yes' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 17.9.1 Ensure 'Audit IPsec Driver' is set to 'Success and Failure' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 17.9.2 (L1) Ensure 'Audit Other System Events' is set to 'Success and Failure' | CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker | Windows | AUDIT AND ACCOUNTABILITY, SYSTEM AND COMMUNICATIONS PROTECTION |
| 17.9.4 Ensure 'Audit Security System Extension' is set to include 'Success' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 17.9.5 Ensure 'Audit System Integrity' is set to 'Success and Failure' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| 18.4.13 Ensure 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' is set to 'Enabled: 90% or less' | CIS Microsoft Windows 8.1 v2.4.1 L1 | Windows | AUDIT AND ACCOUNTABILITY |
| BIND-9X-001040 - The BIND 9.x server implementation must be configured with a channel to send audit records to a remote syslog - named syslog | DISA BIND 9.x STIG v1r9 | Unix | AUDIT AND ACCOUNTABILITY |
| DKER-EE-001190 - Docker Enterprise sensitive host system directories must not be mounted on containers. | DISA STIG Docker Enterprise 2.x Linux/Unix v1r1 | Unix | AUDIT AND ACCOUNTABILITY |
| DKER-EE-002130 - The Docker Enterprise socket must not be mounted inside any containers. | DISA STIG Docker Enterprise 2.x Linux/Unix v1r1 | Unix | AUDIT AND ACCOUNTABILITY |
| ESXI-65-000004 - Remote logging for ESXi hosts must be configured. | DISA STIG VMware vSphere ESXi 6.5 v1r4 | VMware | AUDIT AND ACCOUNTABILITY |
| EX19-ED-000050 Exchange audit data must be on separate partitions. | DISA Microsoft Exchange 2019 Edge Server STIG v2r1 | Windows | AUDIT AND ACCOUNTABILITY |
| EX19-MB-000058 Exchange audit data must be on separate partitions. | DISA Microsoft Exchange 2019 Mailbox Server STIG v2r1 | Windows | AUDIT AND ACCOUNTABILITY |
| F5BI-DM-000257 - The BIG-IP appliance must be configured to off-load audit records onto a different system or media than the system being audited. | DISA F5 BIG-IP Device Management 11.x STIG v1r7 | F5 | AUDIT AND ACCOUNTABILITY |
| GEN002710 - All system audit files must not have extended ACLs. | DISA STIG Solaris 10 X86 v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002710 - All system audit files must not have extended ACLs. | DISA STIG Solaris 10 SPARC v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002710 - All system audit files must not have extended ACLs. | DISA STIG Solaris 10 X86 v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - NFS | DISA STIG Solaris 10 X86 v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - NFS | DISA STIG Solaris 10 X86 v2r4 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - NFS | DISA STIG Solaris 10 SPARC v2r4 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - NFS | DISA STIG Solaris 10 SPARC v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - NFS | DISA STIG Solaris 10 X86 v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - NFS | DISA STIG Solaris 10 SPARC v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - SYSLOG | DISA STIG Solaris 10 SPARC v2r4 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN002870 - The system must be configured to send audit records to a remote audit server - SYSLOG | DISA STIG Solaris 10 X86 v2r4 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN003623 - The system must use a separate file system for the system audit data path - df -h @AUDIT_DIR@ | DISA STIG Solaris 10 X86 v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN003623 - The system must use a separate file system for the system audit data path - df -h @AUDIT_DIR@ | DISA STIG Solaris 10 SPARC v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN003623 - The system must use a separate file system for the system audit data path - df -h AUDIT_DIR | DISA STIG Solaris 10 SPARC v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN003623 - The system must use a separate file system for the system audit data path - df -h AUDIT_DIR | DISA STIG Solaris 10 X86 v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005450 - The system must use a remote syslog server (log host). | DISA STIG Solaris 10 X86 v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005450 - The system must use a remote syslog server (log host). | DISA STIG Solaris 10 X86 v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005450 - The system must use a remote syslog server (log host). | DISA STIG Solaris 10 X86 v2r4 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005450 - The system must use a remote syslog server (log host). | DISA STIG Solaris 10 SPARC v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005450 - The system must use a remote syslog server (log host). | DISA STIG Solaris 10 SPARC v2r4 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005450 - The system must use a remote syslog server (log host). | DISA STIG Solaris 10 SPARC v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005460 - The system must only use remote syslog servers (log hosts) justified and documented using site-defined procedures. | DISA STIG Solaris 10 SPARC v2r1 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005460 - The system must only use remote syslog servers (log hosts) justified and documented using site-defined procedures. | DISA STIG Solaris 10 SPARC v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| GEN005460 - The system must only use remote syslog servers (log hosts) justified and documented using site-defined procedures. | DISA STIG Solaris 10 X86 v2r2 | Unix | AUDIT AND ACCOUNTABILITY |
| JBOS-AS-000505 - The JBoss server must be configured to utilize syslog logging. | DISA RedHat JBoss EAP 6.3 STIG v1r4 | Unix | AUDIT AND ACCOUNTABILITY |
| OL6-00-000136 - The operating system must back up audit records on an organization defined frequency onto a different system or media than the system being audited. | DISA STIG Oracle Linux 6 v1r17 | Unix | AUDIT AND ACCOUNTABILITY |
| OL6-00-000137 - The operating system must support the requirement to centrally manage the content of audit records generated by organization defined information system components. | DISA STIG Oracle Linux 6 v1r17 | Unix | AUDIT AND ACCOUNTABILITY |
| PANW-NM-000042 - The Palo Alto Networks security platform must back up audit records at least every seven days onto a different system or system component than the system or component being audited - 'Log Settings Config' | DISA STIG Palo Alto NDM v1r4 | Palo_Alto | AUDIT AND ACCOUNTABILITY |
| PANW-NM-000042 - The Palo Alto Networks security platform must back up audit records at least every seven days onto a different system or system component than the system or component being audited - 'Log Settings System' | DISA STIG Palo Alto NDM v1r4 | Palo_Alto | AUDIT AND ACCOUNTABILITY |
| PANW-NM-000042 - The Palo Alto Networks security platform must back up audit records at least every seven days onto a different system or system component than the system or component being audited - 'Syslog server' | DISA STIG Palo Alto NDM v1r4 | Palo_Alto | AUDIT AND ACCOUNTABILITY |
| SPLK-CL-000250 - Splunk Enterprise must be configured to back up the log records repository at least every seven days onto a different system or system component other than the system or component being audited. | DISA STIG Splunk Enterprise 8.x for Linux v2r1 STIG REST API | Splunk | AUDIT AND ACCOUNTABILITY |
| SYMP-NM-000140 - Symantec ProxySG must back up event logs onto a different system or system component than the system or component being audited - Syslog Enabled | DISA Symantec ProxySG Benchmark NDM v1r2 | BlueCoat | AUDIT AND ACCOUNTABILITY |
