800-53|AC-2c.

Title

ACCOUNT MANAGEMENT

Description

Establishes conditions for group and role membership;

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Category: ACCESS CONTROL

Family: ACCESS CONTROL

Baseline Impact: LOW,MODERATE,HIGH

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
2.2 Ensure the SharePoint farm service account (database access account) is configured with the minimum privileges for the local server.	Windows	CIS Microsoft SharePoint 2016 OS v1.1.0
2.2 Ensure the SharePoint farm service account (database access account) is configured with the minimum privileges for the local server.	Windows	CIS Microsoft SharePoint 2019 OS v1.0.0
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS Red Hat EL7 Server L1 v3.0.1
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS SUSE Linux Enterprise Workstation 11 L1 v2.1.1
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS Ubuntu Linux 18.04 LTS Workstation L1 v2.0.1
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS Amazon Linux v2.1.0 L1
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS SUSE Linux Enterprise Server 11 L1 v2.1.1
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS SUSE Linux Enterprise Server 12 L1 v2.1.0
5.4.3 Ensure default group for the root account is GID 0	Unix	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
5.5 Ensure access to the su command is restricted - wheel group contains root	Unix	CIS Amazon Linux v2.1.0 L1
5.5.4 Ensure default group for the root account is GID 0	Unix	CIS Red Hat EL8 Server L1 v1.0.0
5.5.4 Ensure default group for the root account is GID 0	Unix	CIS Red Hat EL8 Workstation L1 v1.0.0
5.6 Ensure access to the su command is restricted - /etc/group	Unix	CIS SUSE Linux Enterprise Server 12 L1 v2.1.0
5.7 Ensure access to the su command is restricted - wheel group contains root	Unix	CIS Red Hat EL8 Workstation L1 v1.0.0
5.7 Ensure access to the su command is restricted - wheel group contains root	Unix	CIS Red Hat EL8 Server L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Amazon Linux 2023 Server L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Rocky Linux 9 Workstation L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat EL8 Server L1 v3.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS AlmaLinux OS 9 Server L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Oracle Linux 8 Server L1 v3.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Workstation
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Ubuntu Linux 20.04 LTS Workstation L1 v2.0.1
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Debian 10 Workstation L1 v2.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Amazon Linux 2 v3.0.0 L1
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS CentOS Linux 7 v4.0.0 L1 Workstation
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS AlmaLinux OS 9 Workstation L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Oracle Linux 7 v4.0.0 L1 Server
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Oracle Linux 9 Workstation L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat EL9 Workstation L1 v1.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat Enterprise Linux 7 v4.0.0 L1 Server
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Debian 10 Server L1 v2.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS AlmaLinux OS 8 Server L1 v3.0.0
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS CentOS Linux 7 v4.0.0 L1 Server
6.2.3 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS AlmaLinux OS 8 Workstation L1 v3.0.0
6.2.13 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat EL7 Server L1 v3.0.1
6.2.14 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat EL8 Workstation L1 v1.0.0
6.2.14 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Red Hat EL8 Server L1 v1.0.0
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS SUSE Linux Enterprise Server 12 L1 v2.1.0
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Google Container-Optimized OS L2 Server v1.1.0
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Amazon Linux v2.1.0 L1
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Ubuntu Linux 18.04 LTS Server L1 v2.0.1
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Ubuntu Linux 14.04 LTS Server L1 v2.1.0
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Ubuntu Linux 14.04 LTS Workstation L1 v2.1.0
6.2.15 Ensure all groups in /etc/passwd exist in /etc/group	Unix	CIS Ubuntu Linux 18.04 LTS Workstation L1 v2.0.1
10.3 Set Default Group for root Account	Unix	CIS Debian Linux 7 L1 v1.0.0
12.03 Unix root group members on host - 'Disallow 'oracle' as a member of root group'	Unix	CIS v1.1.0 Oracle 11g OS L1
13.11 Check Groups in /etc/passwd	Unix	CIS Debian Linux 7 L1 v1.0.0
13.11 Check Groups in /etc/passwd	Unix	CIS Ubuntu 12.04 LTS Benchmark L1 v1.1.0

Detections

Analytics

800-53|AC-2c.

Title

Description

Reference Item Details

Audit Items