Detections
Analytics

800-53|IA-2(2)

Title

NETWORK ACCESS TO NON-PRIVILEGED ACCOUNTS

Description

The information system implements multifactor authentication for network access to non-privileged accounts.

Reference Item Details

Category: IDENTIFICATION AND AUTHENTICATION

Parent Title: IDENTIFICATION AND AUTHENTICATION (ORGANIZATIONAL USERS)

Family: IDENTIFICATION AND AUTHENTICATION

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.3.10.2 Set 'Network access: Allow anonymous SID/Name translation' to 'Disabled'WindowsCIS Windows 8 L1 v1.0.0
1.1.3.10.4 Configure 'Network access: Named Pipes that can be accessed anonymously'WindowsCIS Windows 8 L1 v1.0.0
1.2 Ensure that Multi-Factor Authentication is 'Enabled' for All Non-Service AccountsGCPCIS Google Cloud Platform Foundation v4.0.0 L1
1.2.1 Set 'privilege 1' for local usersCiscoCIS Cisco IOS XE 16.x v2.1.0 L1
1.2.1 Set 'privilege 1' for local usersCiscoCIS Cisco IOS XE 17.x v2.2.1 L1
1.3 Ensure that Security Key Enforcement is Enabled for All Admin AccountsGCPCIS Google Cloud Platform Foundation v4.0.0 L2
1.4 Ensure multi-factor authentication (MFA) is turned on for all human users with password-based authenticationSnowflakeCIS Snowflake Foundations v1.0.0 L1
1.13 Ensure the operating system has the packages required for multifactor authenticationUnixCIS Red Hat Enterprise Linux 8 STIG v2.0.0 STIG
1.19 UBTU-24-100650UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.20 UBTU-24-100660UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.30 UBTU-24-100910UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.78 UBTU-24-400020UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.102 UBTU-22-612010UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.208 RHEL-09-255035UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.209 RHEL-09-255040UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT I
1.228 WN19-SO-000210WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 DC CAT I
1.228 WN19-SO-000210WindowsCIS Microsoft Windows Server 2019 STIG v4.0.0 MS CAT I
1.339 RHEL-09-611160UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 3.6 L1 Windows Audit v1.1.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 8 v1.0.0 L1 Unix
2.1 Ensure Authentication is configuredUnixCIS MongoDB 4 L1 OS Linux v1.0.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 4 L1 OS Windows v1.0.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 5 L1 OS Windows v1.2.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 6 v1.2.0 L1 MongoDB
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 7 v1.2.0 L1 Windows
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 8 v1.0.0 L1 Windows
2.1 Ensure Authentication is configuredUnixCIS MongoDB 3.6 L1 Unix Audit v1.1.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 5 L1 OS Linux v1.2.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 6 v1.2.0 L1 MongoDB
2.1 Ensure Authentication is configuredUnixCIS MongoDB 7 v1.2.0 L1 Unix
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 7 v1.2.0 L1 Unix
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 6 v1.2.0 L1 MongoDB
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 3.6 L1 Unix Audit v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 4 L1 OS Linux v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 5 L1 OS Linux v1.2.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 6 v1.2.0 L1 MongoDB
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 8 v1.0.0 L1 Unix
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 3.6 L1 Windows Audit v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 4 L1 OS Windows v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 7 v1.2.0 L1 Windows
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 8 v1.0.0 L1 Windows
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 5 L1 OS Windows v1.2.0
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise v4.0.0 L1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows 10 Enterprise v4.0.0 L1 BL
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2019 v4.0.0 L1 DC
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2022 v4.0.0 L1 DC
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2022 v4.0.0 L1 MS
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'WindowsCIS Microsoft Windows Server 2016 v3.0.0 L1 MS