Detections
Analytics

800-53|IA-2(2)

Title

NETWORK ACCESS TO NON-PRIVILEGED ACCOUNTS

Description

The information system implements multifactor authentication for network access to non-privileged accounts.

Reference Item Details

Category: IDENTIFICATION AND AUTHENTICATION

Parent Title: IDENTIFICATION AND AUTHENTICATION (ORGANIZATIONAL USERS)

Family: IDENTIFICATION AND AUTHENTICATION

Baseline Impact: MODERATE,HIGH

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.1.2.1.7 Set 'Network access: Shares that can be accessed anonymously' to 'None'WindowsCIS Windows 2003 DC v3.1.0
1.1.1.2.1.7 Set 'Network access: Shares that can be accessed anonymously' to 'None'WindowsCIS Windows 2003 MS v3.1.0
1.1.1.2.1.68 Set 'Network access: Allow anonymous SID/Name translation' to 'Disabled'WindowsCIS Windows 2003 DC v3.1.0
1.1.1.2.1.68 Set 'Network access: Allow anonymous SID/Name translation' to 'Disabled'WindowsCIS Windows 2003 MS v3.1.0
1.1.1.2.1.72 Configure 'Network access: Named Pipes that can be accessed anonymously'WindowsCIS Windows 2003 DC v3.1.0
1.1.1.2.1.72 Configure 'Network access: Named Pipes that can be accessed anonymously'WindowsCIS Windows 2003 MS v3.1.0
1.1.2 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Privileged Usersmicrosoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
1.1.3 Ensure that 'Multi-Factor Auth Status' is 'Enabled' for all Non-Privileged Usersmicrosoft_azureCIS Microsoft Azure Foundations v2.1.0 L2
1.1.3.10.2 Set 'Network access: Allow anonymous SID/Name translation' to 'Disabled'WindowsCIS Windows 8 L1 v1.0.0
1.1.3.10.4 Configure 'Network access: Named Pipes that can be accessed anonymously'WindowsCIS Windows 8 L1 v1.0.0
1.1.4 Ensure that 'Allow users to remember multi-factor authentication on devices they trust' is Disabledmicrosoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
1.2 Ensure that Multi-Factor Authentication is 'Enabled' for All Non-Service AccountsGCPCIS Google Cloud Platform v3.0.0 L1
1.2.1 Set 'privilege 1' for local usersCiscoCIS Cisco IOS XE 16.x v2.1.0 L1
1.2.1 Set 'privilege 1' for local usersCiscoCIS Cisco IOS XE 17.x v2.1.0 L1
1.2.3 Ensure that A Multi-factor Authentication Policy Exists for Administrative Groupsmicrosoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
1.2.4 Ensure that A Multi-factor Authentication Policy Exists for All Usersmicrosoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
1.2.5 Ensure Multi-factor Authentication is Required for Risky Sign-insmicrosoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
1.3 Ensure that Security Key Enforcement is Enabled for All Admin AccountsGCPCIS Google Cloud Platform v3.0.0 L2
1.4.1.2 Ensure 'local username and password' is setCiscoCIS Cisco Firewall ASA 8 L1 v4.1.0
1.5 Ensure That 'Number of methods required to reset' is set to '2'microsoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
1.9.6 Network access: Allow anonymous SID/Name translationWindowsCIS Windows 2008 Enterprise v1.2.0
1.9.6 Network access: Allow anonymous SID/Name translationWindowsCIS Windows 2008 SSLF v1.2.0
1.9.41 Network access: Named Pipes that can be accessed anonymouslyWindowsCIS Windows 2008 Enterprise v1.2.0
1.9.41 Network access: Named Pipes that can be accessed anonymously - Domain ControllerWindowsCIS Windows 2008 SSLF v1.2.0
1.9.41 Network access: Named Pipes that can be accessed anonymously - Member ServerWindowsCIS Windows 2008 SSLF v1.2.0
1.9.44 Network access: Shares that can be accessed anonymouslyWindowsCIS Windows 2008 Enterprise v1.2.0
1.9.44 Network access: Shares that can be accessed anonymouslyWindowsCIS Windows 2008 SSLF v1.2.0
1.21 Ensure that 'Require Multi-Factor Authentication to register or join devices with Microsoft Entra ID' is set to 'Yes'microsoft_azureCIS Microsoft Azure Foundations v2.1.0 L1
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 3.6 L1 Windows Audit v1.1.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 7 L1 OS Linux v1.0.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 4 L1 OS Linux v1.0.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 4 L1 OS Windows v1.0.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 7 L1 OS Windows v1.0.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 5 L1 OS Windows v1.2.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 6 L1 OS Linux v1.1.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 3.6 L1 Unix Audit v1.1.0
2.1 Ensure Authentication is configuredUnixCIS MongoDB 5 L1 OS Linux v1.2.0
2.1 Ensure Authentication is configuredWindowsCIS MongoDB 6 L1 OS Windows v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 6 L1 OS Linux v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 6 L1 OS Windows v1.1.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionWindowsCIS MongoDB 7 L1 OS Windows v1.0.0
2.2 Ensure that MongoDB does not bypass authentication via the localhost exceptionUnixCIS MongoDB 7 L1 OS Linux v1.0.0
18.10.15.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 STIG v2.0.0 L1 MS
18.10.15.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG v2.0.0 L1 MS
18.10.15.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2019 STIG v2.0.0 L1 DC
18.10.15.5 (L1) Ensure 'Enable OneSettings Auditing' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2016 STIG v2.0.0 L1 DC
18.10.15.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2022 STIG v1.0.0 L1 MS
18.10.15.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled'WindowsCIS Microsoft Windows Server 2022 STIG v1.0.0 L1 DC
18.10.15.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2019 Standalone DC L1 vCIS Microsoft Windows Server 2019 Standalone DC L1 v1.0.0
18.10.15.5 Ensure 'Enable OneSettings Auditing' is set to 'Enabled' - EnabledWindowsCIS Microsoft Windows Server 2019 MS Standalone L1 v1.0.0