| 1.1.1.1 Set 'Account lockout threshold' to '5 invalid logon attempt(s)' | CIS Windows 8 L1 v1.0.0 | Windows | ACCESS CONTROL |
| 1.1.2.31 Set 'Audit Policy: Logon-Logoff: Account Lockout' to 'No Auditing' | CIS Windows 8 L1 v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
| 1.2.1 Ensure 'Account lockout duration' is set to '15 or more minute(s)' | CIS Windows 7 Workstation Level 1 v3.2.0 | Windows | ACCESS CONTROL |
| 1.2.2 Ensure 'Account lockout threshold' is set to '10 or fewer invalid logon attempt(s), but not 0' | CIS Windows 7 Workstation Level 1 v3.2.0 | Windows | ACCESS CONTROL |
| 1.2.3 Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)' | CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0 | Windows | ACCESS CONTROL |
| 1.4.2 Ensure 'Failed Attempts' and 'Lockout Time' for Authentication Profile are properly configured - Lockout Time | CIS Palo Alto Firewall 6 Benchmark L1 v1.0.0 | Palo_Alto | ACCESS CONTROL |
| 5.2.1 Configure account lockout threshold | CIS Apple OSX 10.10 Yosemite L1 v1.2.0 | Unix | ACCESS CONTROL |
| 5.3.2 Ensure lockout for failed password attempts is configured | CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0 | Unix | ACCESS CONTROL |
| 5.3.2 Ensure lockout for failed password attempts is configured | CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0 | Unix | ACCESS CONTROL |
| 5.3.2 Ensure lockout for failed password attempts is configured - password-auth 'auth [default=die] pam_faillock.so authfail audit deny=5 unlock_time=900' | CIS Amazon Linux v2.1.0 L1 | Unix | ACCESS CONTROL |
| 5.3.2 Ensure lockout for failed password attempts is configured - password-auth 'auth sufficient pam_faillock.so authsucc audit deny=5 unlock_time=900' | CIS Amazon Linux v2.1.0 L1 | Unix | ACCESS CONTROL |
| 6.1.4 Set SSH MaxAuth Tries to 3 - Check if MaxAuthTries is set to 3 or lower and not commented for the server. | CIS Solaris 10 L1 v5.2 | Unix | ACCESS CONTROL |
| 6.4 Limit Consecutive Login Attempts for SSH | CIS Solaris 11.2 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 6.10 Set Delay between Failed Login Attempts to 4 | CIS Solaris 11.2 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 6.10 Set Delay between Failed Login Attempts to 4 - SLEEPTIME = 4 | CIS Solaris 11 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 6.11 Set Retry Limit for Account Lockout - Check if 'RETRIES' in /etc/default/login is set to 3. | CIS Solaris 10 L1 v5.2 | Unix | ACCESS CONTROL |
| 6.15 Set Retry Limit for Account Lockout - RETRIES = 3 | CIS Solaris 11 L1 v1.1.0 | Unix | ACCESS CONTROL |
| 9.2.1 Set Password Creation Requirement Parameters Using pam_cracklib - retry | CIS Debian Linux 7 L1 v1.0.0 | Unix | ACCESS CONTROL |
| 9.2.2 Set Lockout for Failed Password Attempts | CIS Debian Linux 7 L1 v1.0.0 | Unix | ACCESS CONTROL |
| 17.5.1 Ensure 'Audit Account Lockout' is set to include 'Failure' | CIS Windows 7 Workstation Level 1 + Bitlocker v3.2.0 | Windows | AUDIT AND ACCOUNTABILITY |
| Account lockout duration | MSCT Windows Server 1903 DC v1.19.9 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows Server 2016 DC v1.0.0 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows Server 2019 MS v1.0.0 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows Server v20H2 DC v1.0.0 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows 10 v20H2 v1.0.0 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows Server v1909 DC v1.0.0 | Windows | ACCESS CONTROL |
| Account lockout duration | MSCT Windows Server v1909 MS v1.0.0 | Windows | ACCESS CONTROL |
| Audit Account Lockout | MSCT Windows 10 1809 v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
| Audit Account Lockout | MSCT Windows 10 1909 v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
| Audit Account Lockout | MSCT Windows Server v20H2 MS v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
| Audit Account Lockout | MSCT Windows 10 v21H2 v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
| Audit Account Lockout | MSCT Windows Server v1909 MS v1.0.0 | Windows | AUDIT AND ACCOUNTABILITY |
| FireEye - AAA lockout settings apply to the 'admin' user | TNS FireEye | FireEye | ACCESS CONTROL |
| FireEye - AAA lockouts occur after at most 5 failures | TNS FireEye | FireEye | |
| Fortigate - Admin password lockout >= 300 seconds | TNS Fortigate FortiOS Best Practices v2.0.0 | FortiGate | ACCESS CONTROL |
| IBM i : Maximum Sign-On Attempts (QMAXSIGN) - '3' | IBM iSeries Security Reference v5r4 | AS/400 | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows 10 1809 v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows Server 1903 MS v1.19.9 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows Server v2004 DC v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows Server v2004 MS v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows Server 2012 R2 MS v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows Server v20H2 MS v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows 10 v2004 v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows 10 v21H2 v1.0.0 | Windows | ACCESS CONTROL |
| Interactive logon: Machine account lockout threshold | MSCT Windows Server 1903 DC v1.19.9 | Windows | ACCESS CONTROL |
| Reset account lockout counter after | MSCT Windows 10 1803 v1.0.0 | Windows | ACCESS CONTROL |
| Reset account lockout counter after | MSCT Windows 10 1903 v1.19.9 | Windows | ACCESS CONTROL |
| Reset account lockout counter after | MSCT Windows Server v2004 DC v1.0.0 | Windows | ACCESS CONTROL |
| Reset account lockout counter after | MSCT Windows 10 v2004 v1.0.0 | Windows | ACCESS CONTROL |
