Name | Audit Name | Plugin | Category |
---|---|---|---|
Cross-Account Access | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
IAM Roles for Amazon EC2 | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: GetAccountPasswordPolicy - 'Password expiration is enabled' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
IAM: GetAccountSummary - 'Groups' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: GetAccountSummary - 'GroupsQuota <= 100' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: GetAccountSummary - 'Roles' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: GetAccountSummary - 'RolesQuota' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: GetAccountSummary - 'Users' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
IAM: GetAccountSummary - 'UsersQuota' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
IAM: GetGroup - 'Admin group membership should be reviewed' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: GetGroup - 'Group membership should be reviewed' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: ListAccessKeys - 'Active Access Keys should be rotated' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
IAM: ListAccessKeys - 'List of Active Access Keys' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
IAM: ListAccessKeys - 'List of Inactive Access Keys' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, PERSONNEL SECURITY, SYSTEM AND COMMUNICATIONS PROTECTION |
IAM: ListGroupPolicies - 'Review policies assigned to groups' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: ListGroups - 'Review current group list' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: ListMFADevices - 'Review the MFA device assigments' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
IAM: ListRoles - 'Review roles' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |
IAM: ListUsers - 'Review current user list' | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION, MAINTENANCE, PERSONNEL SECURITY, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND INFORMATION INTEGRITY |
IAM: ListUsers - 'Review user paths' | Tenable AWS Best Practice Audit | amazon_aws | IDENTIFICATION AND AUTHENTICATION |
Identity Federation | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
Managing Metrics and Improvement | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AWARENESS AND TRAINING, AUDIT AND ACCOUNTABILITY, SECURITY ASSESSMENT AND AUTHORIZATION, CONFIGURATION MANAGEMENT, CONTINGENCY PLANNING, IDENTIFICATION AND AUTHENTICATION, INCIDENT RESPONSE, MAINTENANCE, MEDIA PROTECTION, PHYSICAL AND ENVIRONMENTAL PROTECTION, PLANNING, PROGRAM MANAGEMENT, PERSONNEL SECURITY, RISK ASSESSMENT, SYSTEM AND SERVICES ACQUISITION, SYSTEM AND COMMUNICATIONS PROTECTION, SYSTEM AND INFORMATION INTEGRITY |
Managing OS-level Access to Amazon EC2 Instances | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, IDENTIFICATION AND AUTHENTICATION |
MFA for API calls | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND COMMUNICATIONS PROTECTION |
Resource Access Authorization | Tenable AWS Best Practice Audit | amazon_aws | ACCESS CONTROL, AUDIT AND ACCOUNTABILITY, IDENTIFICATION AND AUTHENTICATION, SYSTEM AND INFORMATION INTEGRITY |