Detections
Analytics

Item Search

NameAudit NamePluginCategory
1.1.1 Enable 'aaa new-model'CIS Cisco IOS 12 L1 v4.0.0Cisco

ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION

1.1.8 Set 'aaa accounting connection'CIS Cisco IOS 12 L2 v4.0.0Cisco

AUDIT AND ACCOUNTABILITY

1.1.10 Set 'aaa accounting network'CIS Cisco IOS 12 L2 v4.0.0Cisco

AUDIT AND ACCOUNTABILITY

1.2.2 Set 'transport input ssh' for 'line vty' connectionsCIS Cisco IOS 12 L1 v4.0.0Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

1.2.3 Set 'no exec' for 'line aux 0'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

1.2.6 Set 'exec-timeout' to less than or equal to 10 minutes for 'line aux 0'CIS Cisco IOS 12 L1 v4.0.0Cisco

ACCESS CONTROL

1.4.3 Set 'username secret' for all local usersCIS Cisco IOS 12 L1 v4.0.0Cisco

IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION

1.5.4 Do not set 'RW' for any 'snmp-server community'CIS Cisco IOS 12 L1 v4.0.0Cisco

SYSTEM AND INFORMATION INTEGRITY

2.1.3 Set 'no ip bootp server'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.1.4 Set 'no service dhcp'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.1.8 Set 'no service pad'CIS Cisco IOS 12 L1 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.2.3 Set 'logging console critical'CIS Cisco IOS 12 L1 v4.0.0Cisco

AUDIT AND ACCOUNTABILITY

2.2.6 Set 'service timestamps debug datetime'CIS Cisco IOS 12 L1 v4.0.0Cisco

AUDIT AND ACCOUNTABILITY

2.3.1.2 Set 'ntp authentication-key'CIS Cisco IOS 12 L2 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.3.2 Set 'ip address' for 'ntp server'CIS Cisco IOS 12 L1 v4.0.0Cisco

AUDIT AND ACCOUNTABILITY

2.4.3 Require Binding NTP Service to Loopback Interface - 'NTP/SNTP is bound to loopback'CIS Cisco IOS 12 L2 v4.0.0Cisco

CONFIGURATION MANAGEMENT

2.4.4 Set 'ip tftp source-interface' to the Loopback InterfaceCIS Cisco IOS 12 L2 v4.0.0Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny 192.0.2.0'CIS Cisco IOS 12 L2 v4.0.0Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny host 255.255.255.255'CIS Cisco IOS 12 L2 v4.0.0Cisco

SYSTEM AND COMMUNICATIONS PROTECTION

3.3.1.8 Set 'ip authentication key-chain eigrp'CIS Cisco IOS 15 L2 v4.1.1Cisco

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

3.3.3.5 Set 'ip rip authentication mode' to 'md5'CIS Cisco IOS 15 L2 v4.1.1Cisco

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

3.3.4.1 Set 'neighbor password'CIS Cisco IOS 15 L2 v4.1.1Cisco

CONFIGURATION MANAGEMENT, SYSTEM AND COMMUNICATIONS PROTECTION

Account Management - Review disabled user accountsTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

ACCESS CONTROL

Account Management - Review disabled user accountsTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

ACCESS CONTROL

Configure an IPsec TunnelTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

ACCESS CONTROL

Configure IPsec Tunnel Parameters - cipher-suiteTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

ACCESS CONTROL

Content of Audit Records - Configure disk logging - file rotateTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

AUDIT AND ACCOUNTABILITY

Content of Audit Records - Configure disk logging - file rotateTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

AUDIT AND ACCOUNTABILITY

Content of Audit Records - Configure remote syslog - priority levelTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

AUDIT AND ACCOUNTABILITY

Enable IKE Version 1/2 - cipher-suiteTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

SYSTEM AND COMMUNICATIONS PROTECTION

Ensure 'aaa local authentication max failed attempts' is set to less than or equal to '3'Tenable Cisco Firepower Best Practices AuditCisco

ACCESS CONTROL

Ensure 'EIGRP authentication' is enabledTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Ensure 'HTTP session timeout' is less than or equal to '5' minutesTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Ensure 'Image Authenticity' is correctTenable Cisco Firepower Best Practices AuditCisco

SYSTEM AND INFORMATION INTEGRITY

Ensure 'SNMP traps' is enabled - authenticationTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Ensure 'SNMP traps' is enabled - linkdownTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Ensure 'SNMP traps' is enabled - linkupTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Ensure 'TLS 1.0' is set for HTTPS accessTenable Cisco Firepower Best Practices AuditCisco

SYSTEM AND COMMUNICATIONS PROTECTION

Ensure email logging is configured for critical to emergencyTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Ensure packet fragments are restricted for untrusted interfacesTenable Cisco Firepower Best Practices AuditCisco

CONFIGURATION MANAGEMENT

Event Logging - Configure remote syslog - serverTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

AUDIT AND ACCOUNTABILITY

Identification and Authentication - Use out of band authentication - AAA - audit loggingTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Identification and Authentication - Use out of band authentication - Admin Authentication OrderTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

IDENTIFICATION AND AUTHENTICATION

Secure Name/address Resolution Service - Configure DNS servers - PrimaryTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

SYSTEM AND COMMUNICATIONS PROTECTION

Secure Name/address Resolution Service - Configure DNS servers - PrimaryTenable Cisco Viptela SD-WAN - vManageCisco_Viptela

SYSTEM AND COMMUNICATIONS PROTECTION

Secure Name/address Resolution Service - Configure DNS servers - SecondaryTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

SYSTEM AND COMMUNICATIONS PROTECTION

Session Termination - Configure Idle CLI timeoutTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

ACCESS CONTROL

System Backup - Enable Backups - pathTenable Cisco Viptela SD-WAN - vBondCisco_Viptela

CONTINGENCY PLANNING

System Use Notification - Banner LoginTenable Cisco Viptela SD-WAN - vEdgeCisco_Viptela

ACCESS CONTROL

Time Stamps - Enable NTP - remote serverTenable Cisco Viptela SD-WAN - vSmartCisco_Viptela

AUDIT AND ACCOUNTABILITY