Detections
Analytics

CCI|CCI-001764

Title

The information system prevents program execution in accordance with organization-defined policies regarding software program usage and restrictions, and/or rules authorizing the terms and conditions of software program usage.

Reference Item Details

Category: 2013

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.1.7 Ensure noexec option set on /dev/shm partition - fstabUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.7 Ensure noexec option set on /dev/shm partition - mountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.8 Ensure nodev option set on /dev/shm partition - fstabUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.8 Ensure nodev option set on /dev/shm partition - mountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.9 Ensure nosuid option set on /dev/shm partition - fstabUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.1.9 Ensure nosuid option set on /dev/shm partition - mountUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
2.022 - Disallow AutoPlay/Autorun from Autorun.infWindowsDISA Windows Server 2008 DC STIG v6r47
2.022 - Disallow AutoPlay/Autorun from Autorun.infWindowsDISA Windows Vista STIG v6r41
2.022 - Disallow AutoPlay/Autorun from Autorun.infWindowsDISA Windows Server 2008 MS STIG v6r46
2.1022 - The system must mount /dev/shm with the nodev option. - fstabUnixTenable Fedora Linux Best Practices v2.0.0
2.1022 - The system must mount /dev/shm with the nodev option. - mountUnixTenable Fedora Linux Best Practices v2.0.0
2.1023 - The system must mount /dev/shm with the nosuid option. - fstabUnixTenable Fedora Linux Best Practices v2.0.0
2.1023 - The system must mount /dev/shm with the nosuid option. - mountUnixTenable Fedora Linux Best Practices v2.0.0
2.1024 - The system must mount /dev/shm with the noexec option. - fstabUnixTenable Fedora Linux Best Practices v2.0.0
2.1024 - The system must mount /dev/shm with the noexec option. - mountUnixTenable Fedora Linux Best Practices v2.0.0
3.059 - Autoplay will be disabled for all drives.WindowsDISA Windows Server 2008 R2 DC STIG v1r34
3.059 - Autoplay will be disabled for all drives.WindowsDISA Windows Server 2008 R2 MS STIG v1r33
3.059 - The system is configured to autoplay removable media.WindowsDISA Windows Server 2008 MS STIG v6r46
3.059 - The system is configured to autoplay removable media.WindowsDISA Windows 7 STIG v1r32
3.059 - The system is configured to autoplay removable media.WindowsDISA Windows Vista STIG v6r41
3.059 - The system is configured to autoplay removable media.WindowsDISA Windows Server 2008 DC STIG v6r47
5.280 - Autoplay will be turned off for non-volume devices.WindowsDISA Windows Server 2008 R2 MS STIG v1r33
5.280 - Autoplay will be turned off for non-volume devices.WindowsDISA Windows Server 2008 R2 DC STIG v1r34
5.280 - Turn off autoplay for non-volume devices.WindowsDISA Windows 7 STIG v1r32
5.286 - The default autorun behavior must be configured to prevent autorun commands.WindowsDISA Windows 7 STIG v1r32
5.286 - The default autorun behavior will be configured to prevent autorun commands.WindowsDISA Windows Server 2008 R2 MS STIG v1r33
5.286 - The default autorun behavior will be configured to prevent autorun commands.WindowsDISA Windows Server 2008 R2 DC STIG v1r34
AIOS-12-003600 - Apple iOS must be configured to display the DoD advisory warning message at start-up or each time the user unlocks the device.MDMAirWatch - DISA Apple iOS 12 v2r1
AIOS-12-003600 - Apple iOS must be configured to display the DoD advisory warning message at start-up or each time the user unlocks the device.MDMMobileIron - DISA Apple iOS 12 v1r2
AIOS-12-003600 - Apple iOS must be configured to display the DoD advisory warning message at start-up or each time the user unlocks the device.MDMMobileIron - DISA Apple iOS 12 v2r1
AIOS-12-003600 - Apple iOS must be configured to display the DoD advisory warning message at start-up.MDMAirWatch - DISA Apple iOS 12 v1r2
AIOS-13-003600 - Apple iOS/iPadOS must be configured to display the DoD advisory warning message at start-up or each time the user unlocks the device.MDMAirWatch - DISA Apple iOS/iPadOS 13 v2r1
AIOS-13-003600 - Apple iOS/iPadOS must be configured to display the DoD advisory warning message at start-up or each time the user unlocks the device.MDMMobileIron - DISA Apple iOS/iPadOS 13 v2r1
AIOS-13-003600 - Apple iOS/iPadOS must be configured to display the DoD advisory warning message at start-up.MDMMobileIron - DISA Apple iOS/iPadOS 13 v1r1
AIOS-13-003600 - Apple iOS/iPadOS must be configured to display the DoD advisory warning message at start-up.MDMAirWatch - DISA Apple iOS/iPadOS 13 v1r1
AIX7-00-003025 - AIX must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.UnixDISA STIG AIX 7.x v2r1
AIX7-00-003025 - AIX must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.UnixDISA STIG AIX 7.x v2r8
AIX7-00-003025 - AIX must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.UnixDISA STIG AIX 7.x v2r5
AIX7-00-003025 - AIX must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.UnixDISA STIG AIX 7.x v2r3
AIX7-00-003025 - AIX must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.UnixDISA STIG AIX 7.x v2r6
AIX7-00-003025 - AIX must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs.UnixDISA STIG AIX 7.x v2r9
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Enable Parental ControlsUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Catalina - Enable Parental ControlsUnixNIST macOS Catalina v1.5.0 - 800-53r4 Moderate
Catalina - Enable Parental ControlsUnixNIST macOS Catalina v1.5.0 - 800-53r5 High