800-53|IA-2(2)

Title

NETWORK ACCESS TO NON-PRIVILEGED ACCOUNTS

Description

The information system implements multifactor authentication for network access to non-privileged accounts.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Category: IDENTIFICATION AND AUTHENTICATION

Parent Title: IDENTIFICATION AND AUTHENTICATION (ORGANIZATIONAL USERS)

Family: IDENTIFICATION AND AUTHENTICATION

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.1.3.10.2 Set 'Network access: Allow anonymous SID/Name translation' to 'Disabled'	Windows	CIS Windows 8 L1 v1.0.0
1.1.3.10.4 Configure 'Network access: Named Pipes that can be accessed anonymously'	Windows	CIS Windows 8 L1 v1.0.0
1.2 Ensure that Multi-Factor Authentication is 'Enabled' for All Non-Service Accounts	GCP	CIS Google Cloud Platform v3.0.0 L1
1.2.1 Set 'privilege 1' for local users	Cisco	CIS Cisco IOS XE 16.x v2.1.0 L1
1.2.1 Set 'privilege 1' for local users	Cisco	CIS Cisco IOS XE 17.x v2.1.0 L1
1.3 Ensure that Security Key Enforcement is Enabled for All Admin Accounts	GCP	CIS Google Cloud Platform v3.0.0 L2
1.4 Ensure multi-factor authentication (MFA) is turned on for all human users with password-based authentication	Snowflake	CIS Snowflake Foundations v1.0.0 L1
2.1 Ensure Authentication is configured	Windows	CIS MongoDB 3.6 L1 Windows Audit v1.1.0
2.1 Ensure Authentication is configured	Unix	CIS MongoDB 7 L1 OS Linux v1.0.0
2.1 Ensure Authentication is configured	Unix	CIS MongoDB 4 L1 OS Linux v1.0.0
2.1 Ensure Authentication is configured	Windows	CIS MongoDB 4 L1 OS Windows v1.0.0
2.1 Ensure Authentication is configured	Windows	CIS MongoDB 5 L1 OS Windows v1.2.0
2.1 Ensure Authentication is configured	Windows	CIS MongoDB 7 L1 OS Windows v1.0.0
2.1 Ensure Authentication is configured	Unix	CIS MongoDB 6 L1 OS Linux v1.1.0
2.1 Ensure Authentication is configured	Unix	CIS MongoDB 3.6 L1 Unix Audit v1.1.0
2.1 Ensure Authentication is configured	Unix	CIS MongoDB 5 L1 OS Linux v1.2.0
2.1 Ensure Authentication is configured	Windows	CIS MongoDB 6 L1 OS Windows v1.1.0
2.1.2 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Privileged Users	microsoft_azure	CIS Microsoft Azure Foundations v3.0.0 L1
2.1.3 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Non-Privileged Users	microsoft_azure	CIS Microsoft Azure Foundations v3.0.0 L2
2.1.4 Ensure that 'Allow users to remember multi-factor authentication on devices they trust' is Disabled	microsoft_azure	CIS Microsoft Azure Foundations v3.0.0 L1
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Unix	CIS MongoDB 6 L1 OS Linux v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Windows	CIS MongoDB 6 L1 OS Windows v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Windows	CIS MongoDB 7 L1 OS Windows v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Unix	CIS MongoDB 3.6 L1 Unix Audit v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Unix	CIS MongoDB 4 L1 OS Linux v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Unix	CIS MongoDB 5 L1 OS Linux v1.2.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Unix	CIS MongoDB 7 L1 OS Linux v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Windows	CIS MongoDB 3.6 L1 Windows Audit v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Windows	CIS MongoDB 4 L1 OS Windows v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exception	Windows	CIS MongoDB 5 L1 OS Windows v1.2.0
2.2.5 Ensure that A Multi-factor Authentication Policy Exists for All Users	microsoft_azure	CIS Microsoft Azure Foundations v3.0.0 L2
2.2.6 Ensure Multi-factor Authentication is Required for Risky Sign-ins	microsoft_azure	CIS Microsoft Azure Foundations v3.0.0 L2
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Azure Compute Microsoft Windows Server 2019 v1.0.0 L1 MS
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows 10 EMS Gateway v3.0.0 L1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows 11 Stand-alone v3.0.0 L1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows 11 Enterprise v3.0.0 L1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Windows Server 2012 MS L1 v3.0.0
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows 10 Enterprise v3.0.0 L1 + BL
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows Server 2008 R2 Member Server Level 1 v3.3.1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows Server 2008 Member Server Level 1 v3.3.1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows 10 Stand-alone v3.0.0 L1
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows Server 2022 v3.0.0 L1 Domain Controller
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows Server 2016 v3.0.0 L1 MS
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS
2.3.10.1 (L1) Ensure 'Network access: Allow anonymous SID/Name translation' is set to 'Disabled'	Windows	CIS Microsoft Windows Server 2019 Stand-alone v2.0.0 L1 MS
2.22 Ensure that 'Require Multifactor Authentication to register or join devices with Microsoft Entra' is set to 'Yes'	microsoft_azure	CIS Microsoft Azure Foundations v3.0.0 L1
18.10.15.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS
18.10.15.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC
18.10.15.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS
18.10.15.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'	Windows	CIS Microsoft Windows Server 2022 STIG v1.0.0 L1 DC

Detections

Analytics

800-53|IA-2(2)

Title

Description

Reference Item Details

Audit Items