Audits
Settings
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Theme
Light
Dark
Auto
Help
Plugins
Overview
Plugins Pipeline
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Release Notes
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Links
Tenable Cloud
Tenable Community & Support
Tenable University
Settings
Theme
Light
Dark
Auto
Detections
Plugins
Overview
Plugins Pipeline
Release Notes
Newest
Updated
Search
Nessus Families
WAS Families
NNM Families
LCE Families
Tenable OT Security Families
About Plugin Families
Audits
Overview
Newest
Updated
Search Audit Files
Search Items
References
Authorities
Documentation
Download All Audit Files
Indicators
Overview
Search
Indicators of Attack
Indicators of Exposure
Analytics
CVEs
Overview
Newest
Updated
Search
Attack Path Techniques
Overview
Search
Audits
References
CCI
CCI-001082
CCI
CCI|CCI-001082
Title
Separate user functionality, including user interface services, from system management functionality.
Reference Item Details
Reference:
CCI - DISA Control Correlation Identifier
Category:
2024
Audit Items
View all Reference Audit Items
Name
Plugin
Audit Name
AS24-U1-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1 Middleware
AS24-U1-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1
AS24-U1-000440 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1
AS24-U1-000440 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1 Middleware
AS24-U1-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1
AS24-U1-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality.
Unix
DISA STIG Apache Server 2.4 Unix Server v3r1 Middleware
AS24-W1-000280 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.
Windows
DISA STIG Apache Server 2.4 Windows Server v3r1
AS24-W1-000280 - Apache web server application directories, libraries, and configuration files must only be accessible to privileged users.
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Windows
DISA STIG Apache Server 2.4 Windows Server v3r1
AS24-W1-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality.
Windows
DISA STIG Apache Server 2.4 Windows Server v2r3
AS24-W1-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality.
Windows
DISA STIG Apache Server 2.4 Windows Server v3r1
AS24-W2-000430 - Apache web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Windows
DISA STIG Apache Server 2.4 Windows Site v2r1
AS24-W2-000440 - Anonymous user access to the Apache web server application directories must be prohibited.
Windows
DISA STIG Apache Server 2.4 Windows Site v2r1
AS24-W2-000450 - The Apache web server must separate the hosted applications from hosted Apache web server management functionality.
Windows
DISA STIG Apache Server 2.4 Windows Site v2r1
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - All Profiles
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - CNSSI 1253
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - 800-53r5 High
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - 800-171
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - 800-53r4 High
Catalina - Configure the System to Separate User and System Functionality - separate
Unix
NIST macOS Catalina v1.5.0 - 800-53r5 Moderate
CD12-00-008500 - PostgreSQL must separate user functionality (including user interface services) from database management functionality.
Unix
DISA STIG Crunchy Data PostgreSQL OS v3r1
CNTR-K8-001360 - Kubernetes must separate user functionality.
Unix
DISA STIG Kubernetes v2r2
CNTR-R2-000970 Rancher RKE2 runtime must maintain separate execution domains for each container by assigning each container a separate address space to prevent unauthorized and unintended information transfer via shared system resources.
Unix
DISA Rancher Government Solutions RKE2 STIG v2r2
DB2X-00-004800 - DB2 must separate user functionality (including user interface services) from database management functionality
IBM_DB2DB
DISA STIG IBM DB2 v10.5 LUW v2r1 Database
EP11-00-005100 - The EDB Postgres Advanced Server must separate user functionality (including user interface services) from database management functionality.
PostgreSQLDB
EDB PostgreSQL Advanced Server v11 DB Audit v2r4
EPAS-00-005100 - The EDB Postgres Advanced Server must separate user functionality (including user interface services) from database management functionality.
Unix
EnterpriseDB PostgreSQL Advanced Server OS Linux v2r1
EX13-MB-000100 - Exchange Mailbox databases must reside on a dedicated partition.
Windows
DISA Microsoft Exchange 2013 Mailbox Server STIG v2r3
EX16-MB-000200 - Exchange Mailbox databases must reside on a dedicated partition.
Windows
DISA Microsoft Exchange 2016 Mailbox Server STIG v2r6
EX19-ED-000094 - Exchange queue database must reside on a dedicated partition.
Windows
DISA Microsoft Exchange 2019 Edge Server STIG v2r1
EX19-MB-000105 - Exchange Mailbox databases must reside on a dedicated partition.
Windows
DISA Microsoft Exchange 2019 Mailbox Server STIG v2r2
IIST-SI-000221 - Anonymous IIS 10.0 website access accounts must be restricted.
Windows
DISA IIS 10.0 Site v2r10
IIST-SV-000131 - IIS 10.0 Web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Windows
DISA IIS 10.0 Server v2r10
IIST-SV-000131 - IIS 10.0 Web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Windows
DISA IIS 10.0 Server v3r2
IIST-SV-000132 - The IIS 10.0 web server must separate the hosted applications from hosted web server management functionality.
Windows
DISA IIS 10.0 Server v2r10
IIST-SV-000132 - The IIS 10.0 web server must separate the hosted applications from hosted web server management functionality.
Windows
DISA IIS 10.0 Server v3r2
IISW-SI-000221 - Anonymous IIS 8.5 website access accounts must be restricted.
Windows
DISA IIS 8.5 Site v2r9
IISW-SV-000131 - IIS 8.5 Web server accounts accessing the directory tree, the shell, or other operating system functions and utilities must only be administrative accounts.
Windows
DISA IIS 8.5 Server v2r7
IISW-SV-000132 - The IIS 8.5 web server must separate the hosted applications from hosted web server management functionality.
Windows
DISA IIS 8.5 Server v2r7
JBOS-AS-000355 - The JBoss server must separate hosted application functionality from application server management functionality.
Unix
DISA JBoss EAP 6.3 STIG v2r5
MADB-10-004600 - MariaDB must separate user functionality (including user interface services) from database management functionality.
MySQLDB
DISA MariaDB Enterprise 10.x v2r2 DB
MD3X-00-000390 - MongoDB must uniquely identify and authenticate non-organizational users (or processes acting on behalf of non-organizational users).
MongoDB
DISA STIG MongoDB Enterprise Advanced 3.x v2r3 DB