| 3.070 - The system is configured to permit storage of credentials or .NET Passports. | DISA Windows Server 2008 MS STIG v6r46 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 3.070 - The system will be configured to prevent the storage of passwords and credentials | DISA Windows Server 2008 R2 DC STIG v1r34 | Windows | IDENTIFICATION AND AUTHENTICATION |
| 3.129 - User Account Control - Built In Admin Approval Mode | DISA Windows Server 2008 DC STIG v6r47 | Windows | ACCESS CONTROL |
| 3.129 - User Account Control approval mode for the built-in Administrator will be enabled. | DISA Windows Server 2008 R2 DC STIG v1r34 | Windows | ACCESS CONTROL |
| 3.129 - User Account Control approval mode for the built-in Administrator will be enabled. | DISA Windows Server 2008 R2 MS STIG v1r33 | Windows | ACCESS CONTROL |
| 3.131 - User Account Control - Behavior of elevation prompt for standard users. | DISA Windows Server 2008 MS STIG v6r46 | Windows | ACCESS CONTROL |
| 3.131 - User Account Control - Behavior of elevation prompt for standard users. | DISA Windows Server 2008 DC STIG v6r47 | Windows | ACCESS CONTROL |
| 3.131 - User Account Control must automatically deny elevation requests for standard users. | DISA Windows 7 STIG v1r32 | Windows | ACCESS CONTROL |
| 3.131 - User Account Control will automatically deny standard user requests for elevation. | DISA Windows Server 2008 R2 DC STIG v1r34 | Windows | ACCESS CONTROL |
| 3.131 - User Account Control will automatically deny standard user requests for elevation. | DISA Windows Server 2008 R2 MS STIG v1r33 | Windows | ACCESS CONTROL |
| 3.137 - User Account Control - Run all admins in Admin Approval Mode | DISA Windows Server 2008 MS STIG v6r46 | Windows | ACCESS CONTROL |
| 3.137 - User Account Control will run all administrators in Admin Approval Mode, enabling UAC. | DISA Windows Server 2008 R2 MS STIG v1r33 | Windows | ACCESS CONTROL |
| 3.137 - User Account Control will run all administrators in Admin Approval Mode, enabling UAC. | DISA Windows Server 2008 R2 DC STIG v1r34 | Windows | ACCESS CONTROL |
| 5.116 - Passwords will not be saved in the Remote Desktop Client. | DISA Windows Server 2008 R2 DC STIG v1r34 | Windows | IDENTIFICATION AND AUTHENTICATION |
| F5BI-AP-000191 - The BIG-IP APM must require users to re-authenticate when circumstances or situations require re-authentication. | DISA F5 BIG-IP Access Policy Manager 11.x STIG V1R1 | F5 | IDENTIFICATION AND AUTHENTICATION |
| MADB-10-008200 - MariaDB must require users to reauthenticate when organization-defined circumstances or situations require reauthentication. | DISA MariaDB Enterprise 10.x v1r3 DB | MySQLDB | IDENTIFICATION AND AUTHENTICATION |
| MD4X-00-005600 - MongoDB must require users to reauthenticate when organization-defined circumstances or situations require reauthentication. | DISA STIG MongoDB Enterprise Advanced 4.x v1r3 OS | Unix | IDENTIFICATION AND AUTHENTICATION |
| OL6-00-000537 - The Oracle Linux operating system must require re-authentication when using the 'sudo' command - sudo command. | DISA STIG Oracle Linux 6 v2r7 | Unix | IDENTIFICATION AND AUTHENTICATION |
| OL07-00-010340 - The Oracle Linux operating system must be configured so that users must provide a password for privilege escalation. | DISA Oracle Linux 7 STIG v2r11 | Unix | |
| OL07-00-010350 - The Oracle Linux operating system must be configured so users must re-authenticate for privilege escalation - sudoers | DISA Oracle Linux 7 STIG v2r4 | Unix | ACCESS CONTROL |
| OL07-00-010350 - The Oracle Linux operating system must be configured so users must re-authenticate for privilege escalation - sudoers.d | DISA Oracle Linux 7 STIG v2r4 | Unix | ACCESS CONTROL |
| OL07-00-010350 - The Oracle Linux operating system must be configured so users must re-authenticate for privilege escalation. | DISA Oracle Linux 7 STIG v2r14 | Unix | IDENTIFICATION AND AUTHENTICATION |
| OL08-00-010381 - OL 8 must require users to reauthenticate for privilege escalation and changing roles. | DISA Oracle Linux 8 STIG v1r10 | Unix | IDENTIFICATION AND AUTHENTICATION |
| OL08-00-010385 - The OL 8 operating system must not be configured to bypass password requirements for privilege escalation. | DISA Oracle Linux 8 STIG v1r10 | Unix | IDENTIFICATION AND AUTHENTICATION |
| PPS9-00-008800 - The EDB Postgres Advanced Server must require users to re-authenticate when organization-defined circumstances or situations require re-authentication. | EDB PostgreSQL Advanced Server DB Audit v2r2 | PostgreSQLDB | |
| RHEL-07-010350 - The Red Hat Enterprise Linux operating system must be configured so that users must re-authenticate for privilege escalation. | DISA Red Hat Enterprise Linux 7 STIG v3r12 | Unix | |
| RHEL-07-010350 - The Red Hat Enterprise Linux operating system must be configured so that users must re-authenticate for privilege escalation. | DISA Red Hat Enterprise Linux 7 STIG v3r8 | Unix | |
| SLES-12-010110 - The SUSE operating system must reauthenticate users when changing authenticators, roles, or escalating privileges - !authenticate | DISA SLES 12 STIG v2r9 | Unix | |
| SLES-12-010110 - The SUSE operating system must reauthenticate users when changing authenticators, roles, or escalating privileges - NOPASSWD | DISA SLES 12 STIG v2r7 | Unix | |
| SLES-12-010110 - The SUSE operating system must reauthenticate users when changing authenticators, roles, or escalating privileges. | DISA SLES 12 STIG v2r11 | Unix | |
| SLES-15-020102 - The SUSE operating system must require re-authentication when using the 'sudo' command - sudo command. | DISA SLES 15 STIG v1r13 | Unix | IDENTIFICATION AND AUTHENTICATION |
| SYMP-AG-000310 - Symantec ProxySG providing user authentication intermediary services must require users to reauthenticate every 900 seconds when organization-defined circumstances or situations require reauthentication - siteminder | DISA Symantec ProxySG Benchmark ALG v1r3 | BlueCoat | IDENTIFICATION AND AUTHENTICATION |
| SYMP-AG-000310 - Symantec ProxySG providing user authentication intermediary services must require users to reauthenticate every 900 seconds when organization-defined circumstances or situations require reauthentication - xml | DISA Symantec ProxySG Benchmark ALG v1r3 | BlueCoat | IDENTIFICATION AND AUTHENTICATION |
| SYMP-AG-000310 - Symantec ProxySG providing user authentication intermediary services must require users to reauthenticate every 900 seconds when organization-defined circumstances or situations require reauthentication. - coreid | DISA Symantec ProxySG Benchmark ALG v1r1 | BlueCoat | ACCESS CONTROL |
| SYMP-AG-000310 - Symantec ProxySG providing user authentication intermediary services must require users to reauthenticate every 900 seconds when organization-defined circumstances or situations require reauthentication. - LDAP | DISA Symantec ProxySG Benchmark ALG v1r1 | BlueCoat | ACCESS CONTROL |
| WN08-CC-000096 - Passwords must not be saved in the Remote Desktop Client. | DISA Windows 8/8.1 STIG v1r23 | Windows | IDENTIFICATION AND AUTHENTICATION |
| WN08-CC-000128 - The Windows Remote Management (WinRM) service must not store RunAs credentials. | DISA Windows 8/8.1 STIG v1r23 | Windows | ACCESS CONTROL |
| WN08-SO-000079 - User Account Control must automatically deny elevation requests for standard users. | DISA Windows 8/8.1 STIG v1r23 | Windows | ACCESS CONTROL |
| WN10-CC-000145 - Users must be prompted for a password on resume from sleep (on battery). | DISA Windows 10 STIG v2r4 | Windows | |
| WN10-CC-000270 - Passwords must not be saved in the Remote Desktop Client. | DISA Windows 10 STIG v2r4 | Windows | |
| WN10-CC-000280 - Remote Desktop Services must always prompt a client for passwords upon connection. | DISA Windows 10 STIG v2r1 | Windows | IDENTIFICATION AND AUTHENTICATION |
| WN10-SO-000255 - User Account Control must automatically deny elevation requests for standard users. | DISA Windows 10 STIG v2r4 | Windows | |
| WN11-CC-000145 - Users must be prompted for a password on resume from sleep (on battery). | DISA Windows 11 STIG v1r6 | Windows | IDENTIFICATION AND AUTHENTICATION |
| WN11-CC-000280 - Remote Desktop Services must always prompt a client for passwords upon connection. | DISA Windows 11 STIG v1r6 | Windows | IDENTIFICATION AND AUTHENTICATION |
| WN16-CC-000550 - The Windows Remote Management (WinRM) service must not store RunAs credentials. | DISA Windows Server 2016 STIG v2r6 | Windows | |
| WN16-SO-000460 - User Account Control approval mode for the built-in Administrator must be enabled. | DISA Windows Server 2016 STIG v2r6 | Windows | |
| WN16-SO-000490 - User Account Control must automatically deny standard user requests for elevation. | DISA Windows Server 2016 STIG v2r6 | Windows | |
| WN16-SO-000520 - User Account Control must run all administrators in Admin Approval Mode, enabling UAC. | DISA Windows Server 2016 STIG v2r7 | Windows | |
| WN19-SO-000440 - Windows Server 2019 User Account Control must run all administrators in Admin Approval Mode, enabling UAC. | DISA Windows Server 2019 STIG v2r7 | Windows | |
| WN22-SO-000380 - Windows Server 2022 User Account Control (UAC) approval mode for the built-in Administrator must be enabled. | DISA Windows Server 2022 STIG v1r5 | Windows | IDENTIFICATION AND AUTHENTICATION |
