Detections
Analytics

CCI|CCI-000166

Title

Provide irrefutable evidence that an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
AMLS-NM-000170 - The Arista Multilayer Switch must protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation.AristaDISA STIG Arista MLS DCS-7000 Series NDM v1r4
ARST-ND-000150 - The Arista network device must be configured to audit all administrator activity.AristaDISA STIG Arista MLS EOS 4.2x NDM v2r1
CASA-ND-000210 - The Cisco ASA must be configured to protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation - buffered informationalCiscoDISA STIG Cisco ASA NDM v2r1
CASA-ND-000210 - The Cisco ASA must be configured to protect against an individual (or process acting on behalf of an individual) falsely denying having performed organization-defined actions to be covered by non-repudiation - logging enableCiscoDISA STIG Cisco ASA NDM v2r1
CD12-00-009700 - PostgreSQL must protect against a user falsely repudiating having performed organization-defined actions.PostgreSQLDBDISA STIG Crunchy Data PostgreSQL DB v3r1
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity.CiscoDISA STIG Cisco IOS Router NDM v3r1
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity.CiscoDISA STIG Cisco IOS XE Switch NDM v3r1
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity.CiscoDISA STIG Cisco IOS Switch NDM v3r1
CISC-ND-000210 - The Cisco device must be configured to audit all administrator activity.CiscoDISA STIG Cisco IOS XE Router NDM v3r1
CISC-ND-000210 - The Cisco switch must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation.CiscoDISA STIG Cisco NX-OS Switch NDM v3r1
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - audit policies usedIBM_DB2DBDISA STIG IBM DB2 v10.5 LUW v2r1 Database
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - database policiesIBM_DB2DBDISA STIG IBM DB2 v10.5 LUW v2r1 Database
DB2X-00-000500 - DB2 must protect against a user falsely repudiating having performed organization-defined actions - table policiesIBM_DB2DBDISA STIG IBM DB2 v10.5 LUW v2r1 Database
DKER-EE-001170 - A policy set using the built-in role-based access control (RBAC) capabilities in the Universal Control Plane (UCP) component of Docker Enterprise must be configured.UnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2
DKER-EE-001180 - A policy set using the built-in role-based access control (RBAC) capabilities in the Docker Trusted Registry (DTR) component of Docker Enterprise must be set - repositoryAccessUnixDISA STIG Docker Enterprise 2.x Linux/Unix DTR v2r2
DKER-EE-001180 - A policy set using the built-in role-based access control (RBAC) capabilities in the Docker Trusted Registry (DTR) component of Docker Enterprise must be set - team member accessUnixDISA STIG Docker Enterprise 2.x Linux/Unix UCP v2r2
DTBC-0030 - Incognito mode must be disabled.WindowsDISA STIG Google Chrome v2r9
DTBC-0045 - Session only based cookies must be enabled.WindowsDISA STIG Google Chrome v2r9
DTBI780-IE11 - InPrivate Browsing must be disallowed.WindowsDISA STIG IE 11 v2r5
EDGE-00-000005 - InPrivate mode must be disabled.WindowsDISA STIG Edge v2r1
EDGE-00-000033 - Browser history must be saved.WindowsDISA STIG Edge v2r1
EDGE-00-000067 - Session only-based cookies must be enabled.WindowsDISA STIG Edge v2r1
EP11-00-000900 - The EDB Postgres Advanced Server must protect against a user falsely repudiating by ensuring all accounts are individual, unique, and not shared.PostgreSQLDBEDB PostgreSQL Advanced Server v11 DB Audit v2r4
EPAS-00-000900 - The EDB Postgres Advanced Server must protect against a user falsely repudiating having performed organization-defined actions.PostgreSQLDBEnterpriseDB PostgreSQL Advanced Server DB v2r1
F5BI-DM-000043 - The BIG-IP appliance must be configured to protect against an individual (or process acting on behalf of an individual) falsely denying having performed system configuration changes.F5DISA F5 BIG-IP Device Management STIG v2r3
FGFW-ND-000060 - The FortiGate device must log all user activity.FortiGateDISA Fortigate Firewall NDM STIG v1r4
JUNI-ND-000210 - The Juniper router must be configured to protect against an individual falsely denying having performed organization-defined actions to be covered by non-repudiation.JuniperDISA STIG Juniper Router NDM v3r1
MADB-10-000400 - MariaDB must protect against a user falsely repudiating having performed organization-defined actions.MySQLDBDISA MariaDB Enterprise 10.x v2r1 DB
MD3X-00-000040 - MongoDB must provide audit record generation for DoD-defined auditable events within all DBMS/database components.UnixDISA STIG MongoDB Enterprise Advanced 3.x v2r3 OS
MD4X-00-000100 - MongoDB must provide audit record generation for DoD-defined auditable events within all DBMS/database components.UnixDISA STIG MongoDB Enterprise Advanced 4.x v1r4 OS
MYS8-00-001500 - The MySQL Database Server 8.0 must protect against a user falsely repudiating having performed organization-defined actions.MySQLDBDISA Oracle MySQL 8.0 v2r1 DB
O112-P3-006200 - The DBMS must protect against an individual using a group account from falsely denying having performed a particular action.OracleDBDISA STIG Oracle 11.2g v2r5 Database
O121-P3-006200 - The DBMS must protect against an individual who uses a shared account falsely denying having performed a particular action.OracleDBDISA STIG Oracle 12c v3r1 Database
PGS9-00-009700 - PostgreSQL must protect against a user falsely repudiating having performed organization-defined actions.PostgreSQLDBDISA STIG PostgreSQL 9.x on RHEL DB v2r5
PPS9-00-000900 - The EDB Postgres Advanced Server must protect against a user falsely repudiating having performed organization-defined actions.PostgreSQLDBEDB PostgreSQL Advanced Server DB Audit v2r3
SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server.UnixDISA STIG Solaris 11 X86 v3r1
SOL-11.1-010350 - The operating system must protect against an individual falsely denying having performed a particular action. In order to do so the system must be configured to send audit records to a remote audit server.UnixDISA STIG Solaris 11 SPARC v3r1
SPLK-CL-000090 - Splunk Enterprise must be configured to protect the log data stored in the indexes from alteration.UnixDISA STIG Splunk Enterprise 8.x for Linux v2r1 STIG OS
SPLK-CL-000160 - Splunk Enterprise must be configured to protect the log data stored in the indexes from alteration.SplunkDISA STIG Splunk Enterprise 7.x for Windows v3r1 REST API
SQL2-00-023700 - SQL Server must protect against an individual using a shared account from falsely denying having performed a particular action.MS_SQLDBDISA STIG SQL Server 2012 DB Instance Security v1r20
SQL4-00-023700 - SQL Server must protect against an individual using a shared account from falsely denying having performed a particular action.MS_SQLDBDISA STIG SQL Server 2014 Instance DB Audit v2r4
SQL6-D0-000400 - SQL Server must protect against a user falsely repudiating by ensuring only clearly unique Active Directory user accounts can connect to the database.MS_SQLDBDISA STIG SQL Server 2016 Database Audit v3r1
SQL6-D0-000500 - SQL Server must protect against a user falsely repudiating by use of system-versioned tables (Temporal Tables).MS_SQLDBDISA STIG SQL Server 2016 Database Audit v3r1
SQL6-D0-000600 - SQL Server must protect against a user falsely repudiating by ensuring databases are not in a trust relationship.MS_SQLDBDISA STIG SQL Server 2016 Database Audit v3r1
SQL6-D0-004000 - SQL Server must protect against a user falsely repudiating by ensuring all accounts are individual, unique, and not shared.WindowsDISA STIG SQL Server 2016 Instance OS Audit v3r1
SQL6-D0-004100 - SQL Server must protect against a user falsely repudiating by ensuring the NT AUTHORITY SYSTEM account is not used for administration - clustering and availabilityMS_SQLDBDISA STIG SQL Server 2016 Instance DB Audit v3r1
SQL6-D0-004100 - SQL Server must protect against a user falsely repudiating by ensuring the NT AUTHORITY SYSTEM account is not used for administration - permissionsMS_SQLDBDISA STIG SQL Server 2016 Instance DB Audit v3r1
SQL6-D0-004200 - SQL Server must protect against a user falsely repudiating by ensuring only clearly unique Active Directory user accounts can connect to the instance.MS_SQLDBDISA STIG SQL Server 2016 Instance DB Audit v3r1
TCAT-AS-000050 - AccessLogValve must be configured for each application context.UnixDISA STIG Apache Tomcat Application Server 9 v3r1 Middleware
VCLU-80-000014 The vCenter Lookup service must produce log records containing sufficient information regarding event details.UnixDISA VMware vSphere 8.0 vCenter Appliance Lookup Service STIG v2r1