Detections
Analytics

Item Search

NameAudit NamePluginCategory
BIND-9X-001133 - The BIND 9.x server private key corresponding to the ZSK pair must be the only DNSSEC key kept on a name server that supports dynamic updates.DISA BIND 9.x STIG v1r9Unix
BIND-9X-001150 - The BIND 9.x server signature generation using the KSK must be done off-line, using the KSK-private key stored off-line.DISA BIND 9.x STIG v1r9Unix
DKER-EE-002380 - The certificate chain used by Universal Control Plane (UCP) client bundles must match what is defined in the System Security Plan (SSP) in Docker Enterprise.DISA STIG Docker Enterprise 2.x Linux/Unix v1r1Unix
DKER-EE-002410 - Docker Enterprise secret management commands must be used for managing secrets in a Swarm cluster.DISA STIG Docker Enterprise 2.x Linux/Unix v1r1Unix
EP11-00-004600 - The EDB Postgres Advanced Server must enforce authorized access to all PKI private keys stored/utilized by the EDB Postgres Advanced Server.EDB PostgreSQL Advanced Server v11 Windows OS Audit v1r1Windows

CONFIGURATION MANAGEMENT

MADB-10-004100 - MariaDB must enforce authorized access to all PKI private keys stored/used by the DBMS.DISA MariaDB Enterprise 10.x v1r2 DBMySQLDB
MD4X-00-003100 - MongoDB must enforce authorized access to all PKI private keys stored/utilized by MongoDB - CAFileDISA STIG MongoDB Enterprise Advanced 4.x v1r2 OSUnix
MD4X-00-003100 - MongoDB must enforce authorized access to all PKI private keys stored/utilized by MongoDB - PEMKeyFileDISA STIG MongoDB Enterprise Advanced 4.x v1r2 OSUnix
MD4X-00-003100 - MongoDB must enforce authorized access to all PKI private keys stored/utilized by MongoDB. - CAFileDISA STIG MongoDB Enterprise Advanced 4.x v1r1 OSUnix
MD4X-00-003100 - MongoDB must enforce authorized access to all PKI private keys stored/utilized by MongoDB. - PEMKeyFileDISA STIG MongoDB Enterprise Advanced 4.x v1r1 OSUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0DISA Oracle MySQL 8.0 v1r4 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - private pem filesDISA Oracle MySQL 8.0 v1r3 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - private pem filesDISA Oracle MySQL 8.0 v1r1 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - private pem filesDISA Oracle MySQL 8.0 v1r2 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - public pem filesDISA Oracle MySQL 8.0 v1r2 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - public pem filesDISA Oracle MySQL 8.0 v1r1 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0 - public pem filesDISA Oracle MySQL 8.0 v1r3 OS LinuxUnix
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0.DISA Oracle MySQL 8.0 v1r3 DBMySQLDB
MYS8-00-004800 - The MySQL Database Server 8.0 must enforce authorized access to all PKI private keys stored/utilized by the MySQL Database Server 8.0.DISA Oracle MySQL 8.0 v1r4 DBMySQLDB
O112-C1-015400 - The DBMS, when using PKI-based authentication, must enforce authorized access to the corresponding private key - SSL_CIPHER_SUITESDISA STIG Oracle 11.2g v1r18 LinuxUnix

IDENTIFICATION AND AUTHENTICATION

O112-C1-015400 - The DBMS, when using PKI-based authentication, must enforce authorized access to the corresponding private key - SSL_CLIENT_AUTHENTICATIONDISA STIG Oracle 11.2g v1r18 WindowsWindows

IDENTIFICATION AND AUTHENTICATION

O112-C1-015400 - The DBMS, when using PKI-based authentication, must enforce authorized access to the corresponding private key - SSL_CLIENT_AUTHENTICATIONDISA STIG Oracle 11.2g v1r18 LinuxUnix

IDENTIFICATION AND AUTHENTICATION

OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r1Unix
OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r2Unix
OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r7Unix
OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r4Unix
OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r6Unix
OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r8Unix
OL08-00-010100 - OL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Oracle Linux 8 STIG v1r9Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r1Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r3Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r8Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r7Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r9Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r13Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r6Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r11Unix
RHEL-08-010100 - RHEL 8, for certificate-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 8 STIG v1r5Unix
RHEL-09-611190 - RHEL 9, for PKI-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 9 STIG v1r1Unix
RHEL-09-611190 - RHEL 9, for PKI-based authentication, must enforce authorized access to the corresponding private key.DISA Red Hat Enterprise Linux 9 STIG v1r2Unix
VCFL-67-000018 - vSphere Client must ensure appropriate permissions are set on the keystore.DISA STIG VMware vSphere 6.7 Virgo Client v1r1Unix
VCLD-67-000025 - VAMI must protect the keystore from unauthorized access.DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r2Unix
VCLD-67-000025 - VAMI must protect the keystore from unauthorized access.DISA STIG VMware vSphere 6.7 VAMI-lighttpd v1r1Unix
VCPG-67-000014 - VMware Postgres must enforce authorized access to all PKI private keys.DISA STIG VMware vSphere 6.7 PostgreSQL v1r1Unix
VCRP-67-000007 - The rhttpproxy private key file must be protected from unauthorized access.DISA STIG VMware vSphere 6.7 RhttpProxy v1r1Unix
VCRP-67-000007 - The rhttpproxy private key file must be protected from unauthorized access.DISA STIG VMware vSphere 6.7 RhttpProxy v1r2Unix
WDNS-IA-000008 - The Windows 2012 DNS Server permissions must be set so that the key file can only be read or modified by the account that runs the name server software.DISA Microsoft Windows 2012 Server DNS STIG v1r14Windows

ACCESS CONTROL

WN22-SO-000350 - Windows Server 2022 users must be required to enter a password to access private keys stored on the computer.DISA Windows Server 2022 STIG v1r1Windows
WN22-SO-000350 - Windows Server 2022 users must be required to enter a password to access private keys stored on the computer.DISA Windows Server 2022 STIG v1r3Windows
WN22-SO-000350 - Windows Server 2022 users must be required to enter a password to access private keys stored on the computer.DISA Windows Server 2022 STIG v1r4Windows