Item Search

Name	Audit Name	Plugin	Category
1.2.9 Set 'exec-timeout' to less than or equal to 10 minutes 'line vty'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	ACCESS CONTROL
1.3.2 Set the 'banner-text' for 'banner login'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	ACCESS CONTROL
1.3.3 Set the 'banner-text' for 'banner motd'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	ACCESS CONTROL
1.5.1 Set 'no snmp-server' to disable SNMP when unused	CIS Cisco IOS 12 L1 v4.0.0	Cisco	SYSTEM AND INFORMATION INTEGRITY
1.5.2 Unset 'private' for 'snmp-server community'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
1.5.8 Set 'snmp-server enable traps snmp'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
2.1.1.1.4 Set 'seconds' for 'ip ssh timeout'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
2.1.5 Set 'no ip identd'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
2.1.6 Set 'service tcp-keepalives-in'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
2.2.2 Set 'buffer size' for 'logging buffered'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	AUDIT AND ACCOUNTABILITY
2.2.7 Set 'logging source interface'	CIS Cisco IOS 12 L1 v4.0.0	Cisco	AUDIT AND ACCOUNTABILITY
2.3.1.1 Set 'ntp authenticate'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	IDENTIFICATION AND AUTHENTICATION
2.3.1.4 Set 'key' for each 'ntp server'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	AUDIT AND ACCOUNTABILITY
2.4.1 Create a single 'interface loopback' - 'Only one loopback interface IP Address is defined'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	CONFIGURATION MANAGEMENT
2.4.3 Set 'ntp source' to Loopback Interface - 'NTP/SNTP is bound to loopback'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	AUDIT AND ACCOUNTABILITY
3.1.3 Set 'no interface tunnel'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny 0.0.0.0'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks - 'Deny 169.254.0.0'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.2.1 Set 'ip access-list extended' to Forbid Private Source Addresses from External Networks -'External interface has ACL applied'	CIS Cisco IOS 12 L2 v4.0.0	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
3.9 Ensure 'MachineKey validation method - .Net 4.5' is configured - Applications	CIS IIS 10 v1.2.1 Level 1	Windows	ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION
3.10 Ensure global .NET trust level is configured - Default	CIS IIS 10 v1.2.1 Level 1	Windows	ACCESS CONTROL, MEDIA PROTECTION
Account Management - Review disabled user accounts	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	ACCESS CONTROL
Account Management - Review disabled user accounts	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
AMLS-NM-000430 - The Arista Multilayer Switch must employ AAA service to centrally manage authentication settings - aaa dot1x default group	DISA STIG Arista MLS DCS-7000 Series NDM v1r4	Arista	CONFIGURATION MANAGEMENT
AMLS-NM-000430 - The Arista Multilayer Switch must employ AAA service to centrally manage authentication settings - aaa login default group	DISA STIG Arista MLS DCS-7000 Series NDM v1r4	Arista	CONFIGURATION MANAGEMENT
AMLS-NM-000430 - The Arista Multilayer Switch must employ AAA service to centrally manage authentication settings - aaa policy on-failure	DISA STIG Arista MLS DCS-7000 Series NDM v1r4	Arista	CONFIGURATION MANAGEMENT
Configure an IPsec Tunnel	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
Configure IPsec Tunnel Parameters - cipher-suite	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
Content of Audit Records - Configure disk logging - file rotate	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	AUDIT AND ACCOUNTABILITY
Content of Audit Records - Configure disk logging - file rotate	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	AUDIT AND ACCOUNTABILITY
Content of Audit Records - Configure remote syslog - priority level	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	AUDIT AND ACCOUNTABILITY
Enable IKE Version 1/2 - cipher-suite	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure 'aaa local authentication max failed attempts' is set to less than or equal to '3'	Tenable Cisco Firepower Best Practices Audit	Cisco	ACCESS CONTROL
Ensure 'SNMP traps' is enabled - authentication	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - linkdown	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'SNMP traps' is enabled - linkup	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure 'TLS 1.0' is set for HTTPS access	Tenable Cisco Firepower Best Practices Audit	Cisco	SYSTEM AND COMMUNICATIONS PROTECTION
Ensure email logging is configured for critical to emergency	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Ensure packet fragments are restricted for untrusted interfaces	Tenable Cisco Firepower Best Practices Audit	Cisco	CONFIGURATION MANAGEMENT
Event Logging - Configure remote syslog - server	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	AUDIT AND ACCOUNTABILITY
GEN000240 - The system clock must be synchronized to an authoritative DoD time source - 'NTP daemon uses approved sources'	DISA STIG AIX 5.3 v1r2	Unix	AUDIT AND ACCOUNTABILITY
Identification and Authentication - Use out of band authentication - AAA - audit logging	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Identification and Authentication - Use out of band authentication - Admin Authentication Order	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	IDENTIFICATION AND AUTHENTICATION
Secure Name/address Resolution Service - Configure DNS servers - Primary	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Secure Name/address Resolution Service - Configure DNS servers - Primary	Tenable Cisco Viptela SD-WAN - vManage	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Secure Name/address Resolution Service - Configure DNS servers - Secondary	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	SYSTEM AND COMMUNICATIONS PROTECTION
Session Termination - Configure Idle CLI timeout	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	ACCESS CONTROL
System Backup - Enable Backups - path	Tenable Cisco Viptela SD-WAN - vBond	Cisco_Viptela	CONTINGENCY PLANNING
System Use Notification - Banner Login	Tenable Cisco Viptela SD-WAN - vEdge	Cisco_Viptela	ACCESS CONTROL
Time Stamps - Enable NTP - remote server	Tenable Cisco Viptela SD-WAN - vSmart	Cisco_Viptela	AUDIT AND ACCOUNTABILITY

Detections

Analytics

Item Search