CCI|CCI-000778

Title

Uniquely identify organization-defined devices and/or types of devices before establishing a local, remote, and/or network connection.

Reference Item Details

Reference: CCI - DISA Control Correlation Identifier

Category: 2024

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.1.27 Disable Automounting	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.28 Disable USB Storage - /bin/true	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.28 Disable USB Storage - blacklist	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount-open	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount-open=false	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - automount=false	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - autorun-never	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.8.18 Ensure graphical user interface automounter is disabled - autorun-never=true	Unix	CIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-001025 - AIX must configure the ttys value for all interactive users.	Unix	DISA STIG AIX 7.x v2r9
AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - aaa auth dot1x default group	Arista	DISA STIG Arista MLS DCS-7000 Series L2S v1r3
AMLS-L2-000120 - The Arista Multilayer Switch must uniquely identify all network-connected endpoint devices before establishing any connection - dot1x system-auth-control	Arista	DISA STIG Arista MLS DCS-7000 Series L2S v1r3
ARST-L2-000020 - The Arista MLS layer 2 switch must uniquely identify all network-connected endpoint devices before establishing any connection.	Arista	DISA STIG Arista MLS EOS 4.2x L2S v2r1
BIND-9X-001106 - The BIND 9.x server implementation must utilize separate TSIG key-pairs when securing server-to-server transactions.	Unix	DISA BIND 9.x STIG v2r3
CASA-VN-000310 - The Cisco ASA VPN gateway must be configured to identify all peers before establishing a connection - ipsec-121	Cisco	DISA STIG Cisco ASA VPN v2r1
CASA-VN-000310 - The Cisco ASA VPN gateway must be configured to identify all peers before establishing a connection - local-authentication	Cisco	DISA STIG Cisco ASA VPN v2r1
CASA-VN-000310 - The Cisco ASA VPN gateway must be configured to identify all peers before establishing a connection - remote-authentication	Cisco	DISA STIG Cisco ASA VPN v2r1
Catalina - The macOS system must uniquely identify peripherals before establishing a connection.	Unix	NIST macOS Catalina v1.5.0 - All Profiles
CISC-L2-000020 - The Cisco switch must uniquely identify all network-connected endpoint devices before establishing any connection.	Cisco	DISA STIG Cisco NX-OS Switch L2S v3r1
CISC-L2-000020 - The Cisco switch must uniquely identify and authenticate all network-connected endpoint devices before establishing any connection.	Cisco	DISA STIG Cisco IOS Switch L2S v3r1
CISC-L2-000020 - The Cisco switch must uniquely identify and authenticate all network-connected endpoint devices before establishing any connection.	Cisco	DISA STIG Cisco IOS XE Switch L2S v3r1
JBOS-AS-000285 - The JBoss server must be configured to bind the management interfaces to only management networks.	Unix	DISA RedHat JBoss EAP 6.3 STIG v2r4
JUEX-L2-000020 - The Juniper EX switch must be configured to uniquely identify all network-connected endpoint devices before establishing any connection.	Juniper	DISA Juniper EX Series Layer 2 Switch v2r1
OL6-00-000503 - The operating system must enforce requirements for the connection of mobile devices to operating systems.	Unix	DISA STIG Oracle Linux 6 v2r7
OL07-00-020100 - The Oracle Linux operating system must be configured to disable USB mass storage - blacklist.	Unix	DISA Oracle Linux 7 STIG v2r14
OL07-00-020110 - The Oracle Linux operating system must disable the file system automounter unless required.	Unix	DISA Oracle Linux 7 STIG v2r14
OL07-00-020111 - The Oracle Linux operating system must disable the graphical user interface automounter unless required.	Unix	DISA Oracle Linux 7 STIG v2r14
OL08-00-040070 - The OL 8 file system automounter must be disabled unless required.	Unix	DISA Oracle Linux 8 STIG v2r1
OL08-00-040080 - OL 8 must be configured to disable the ability to use USB mass storage devices.	Unix	DISA Oracle Linux 8 STIG v2r1
PHTN-30-000032 - The Photon operating system must disable the loading of unnecessary kernel modules.	Unix	DISA STIG VMware vSphere 7.0 Photon OS v1r3
PHTN-40-000047 The Photon operating system must disable unnecessary kernel modules.	Unix	DISA VMware vSphere 8.0 vCenter Appliance Photon OS 4.0 STIG v2r1
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - appletalk	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - bluetooth	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - cramfs	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - dccp	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - dccp_ipv4	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - dccp_ipv6	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - decnet	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - freevxfs	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - hfs	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - hfsplus	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - ieee1394	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - ipx	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - jffs2	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - rds	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - sctp	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - squashfs	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - tipc	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - udf	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6
PHTN-67-000033 - The Photon operating system must disable the loading of unnecessary kernel modules - usb-storage	Unix	DISA STIG VMware vSphere 6.7 Photon OS v1r6

Detections

Analytics

CCI|CCI-000778

Title

Reference Item Details

Audit Items