| 8. OpenStack Identity - Policy.json - 'identity:list_projects' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 16. OpenStack Identity - Policy.json - 'identity:delete_policy_association_for_region_and_service' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 16. OpenStack Networking - Policy.json - 'get_subnetpool' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 17. OpenStack Identity - Policy.json - 'identity:get_role' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 19. OpenStack Identity - Policy.json - 'identity:update_endpoint' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 22. OpenStack Identity - Policy.json - 'identity:delete_endpoint' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 27. OpenStack Identity - Policy.json - 'identity:create_consumer' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 28. OpenStack Identity - Policy.json - 'identity:remove_user_from_group' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 29. OpenStack Identity - Policy.json - 'identity:delete_service' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 30. OpenStack Identity - Policy.json - 'identity:get_trust' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 33. OpenStack Networking - Policy.json - 'get_agent-loadbalancers' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 34. OpenStack Networking - Policy.json - 'update_port:device_owner' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 36. OpenStack Networking - Policy.json - 'context_is_admin' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 38. OpenStack Identity - Policy.json - 'identity:add_endpoint_group_to_project' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 40. OpenStack Networking - Policy.json - 'create_qos_queue' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 49. OpenStack Networking - Policy.json - 'get_metering_label' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 56. OpenStack Networking - Policy.json - 'create_port:mac_address' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 58. OpenStack Identity - Policy.json - 'identity:create_user' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 59. OpenStack Identity - Policy.json - 'identity:get_mapping' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 62. OpenStack Identity - Policy.json - 'identity:delete_user' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 67. OpenStack Networking - Policy.json - 'update_subnetpool' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 69. OpenStack Identity - Policy.json - 'identity:update_mapping' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 69. OpenStack Networking - Policy.json - 'update_router:ha' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 71. OpenStack Networking - Policy.json - 'get_network:router:external' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 77. OpenStack Identity - Policy.json - 'identity:list_endpoints_for_project' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 82. OpenStack Identity - Policy.json - 'identity:update_identity_provider' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 83. OpenStack Identity - Policy.json - 'identity:delete_protocol' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 84. OpenStack Identity - Policy.json - 'identity:validate_token' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 85. OpenStack Networking - Policy.json - 'update_port:fixed_ips' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 86. OpenStack Identity - Policy.json - 'identity:delete_project' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 97. OpenStack Networking - Policy.json - 'remove_router_interface' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 99. OpenStack Networking - Policy.json - 'shared' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 102. OpenStack Networking - Policy.json - 'get_agent' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 103. OpenStack Networking - Policy.json - 'shared_subnetpools' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 104. OpenStack Networking - Policy.json - 'get_network:segments' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 113. OpenStack Networking - Policy.json - 'update_firewall_rule' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 119. OpenStack Networking - Policy.json - 'get_firewall' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 120. OpenStack Networking - Policy.json - 'delete_port' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 125. OpenStack Networking - Policy.json - 'get_firewall:shared' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 126. OpenStack Networking - Policy.json - 'update_network:provider:segmentation_id' | TNS OpenStack Neutron/Networking Security Guide | Unix | ACCESS CONTROL |
| 130. OpenStack Identity - Policy.json - 'identity:check_policy_association_for_region_and_service' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 138. OpenStack Identity - Policy.json - 'identity:list_mappings' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| 140. OpenStack Identity - Policy.json - 'token_subject' | TNS OpenStack Keystone/Identity Security Guide | Unix | ACCESS CONTROL |
| Configuring LDAP remote authentication for Active Directory - Servers | Tenable F5 BIG-IP Best Practice Audit | F5 | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Configuring LDAP remote authentication for Active Directory - SSL CA Cert | Tenable F5 BIG-IP Best Practice Audit | F5 | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| DG0116-ORACLE11 - Database privileged role assignments should be restricted to IAO-authorized DBMS accounts. | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | ACCESS CONTROL |
| DG0121-ORACLE11 - Application users privileges should be restricted to assignment using application user roles. | DISA STIG Oracle 11 Instance v9r1 Database | OracleDB | ACCESS CONTROL |
| JUEX-NM-000390 - The Juniper EX switch must be configured to enforce organization-defined role-based access control policies over defined subjects and objects. | DISA Juniper EX Series Network Device Management v2r1 | Juniper | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
| Review the List of Users with ROLE_NAME | Tenable Best Practices RackSpace v2.0.0 | Rackspace | ACCESS CONTROL |
| SYMP-NM-000170 - Symantec ProxySG must use Role-Based Access Control (RBAC) to assign privileges to users for access to files and functions. | DISA Symantec ProxySG Benchmark NDM v1r2 | BlueCoat | ACCESS CONTROL, CONFIGURATION MANAGEMENT |
