CCI|CCI-001814

Title

The Information system supports auditing of the enforcement actions.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.4.4 Ensure boot loader does not allow removable mediaUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.6.1.10 Ensure system device files are labeled - device_tUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
1.6.1.10 Ensure system device files are labeled - unlabeled_tUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
2.2.21 Ensure the TFTP server has not been installed - TFTP server package installed if not required for operational support.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
4.2.1.6 Ensure remote rsyslog messages are only accepted on designated log hosts.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.30 Ensure SSH does not permit GSSAPI - GSSAPI authentication unless needed.UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.3.31 Ensure SSH does not permit Kerberos authenticationUnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
5.5.9 Ensure local interactive user accounts umask is 077UnixCIS Red Hat Enterprise Linux 7 STIG v2.0.0 STIG
AIX7-00-002107 - AIX must disable Kerberos Authentication in ssh config file to enforce access restrictions.UnixDISA STIG AIX 7.x v3r1
AIX7-00-002133 - AIX must be configured to use syslogd to log events by TCPD.UnixDISA STIG AIX 7.x v3r1
AIX7-00-003022 - AIX must disable trivial file transfer protocol.UnixDISA STIG AIX 7.x v3r1
AOSX-13-002110 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.13 v2r5
AOSX-14-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.14 v2r6
AOSX-15-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple Mac OSX 10.15 v1r10
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r5
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fdUnixDISA STIG Apple macOS 11 v1r8
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fmUnixDISA STIG Apple macOS 11 v1r5
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fmUnixDISA STIG Apple macOS 11 v1r8
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - frUnixDISA STIG Apple macOS 11 v1r8
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - frUnixDISA STIG Apple macOS 11 v1r5
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fwUnixDISA STIG Apple macOS 11 v1r8
APPL-11-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system - fwUnixDISA STIG Apple macOS 11 v1r5
APPL-12-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple macOS 12 v1r9
APPL-13-001020 - The macOS system must audit the enforcement actions used to restrict access associated with changes to the system.UnixDISA STIG Apple macOS 13 v1r4
APPL-14-001001 - The macOS system must be configured to audit all administrative action events.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-001003 - The macOS system must enable security auditing.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-001020 - The macOS system must be configured to audit all deletions of object attributes.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-001021 - The macOS system must be configured to audit all changes of object attributes.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-001024 - The macOS system must be configured to audit all failed program execution on the system.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
APPL-14-001044 - The macOS system must configure the system to audit all authorization and authentication events.UnixDISA Apple macOS 14 (Sonoma) STIG v2r2
Big Sur - Configure System to Audit All Deletions of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure System to Audit All Deletions of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Low
Big Sur - Configure System to Audit All Deletions of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Configure System to Audit All Deletions of Object AttributesUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r5 High
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Low
Big Sur - Configure System to Audit All Failed Change of Object AttributesUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Low
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - 800-53r4 Moderate
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - 800-171
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - 800-53r4 High
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - All Profiles
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - CNSSI 1253
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Low
Big Sur - Configure System to Audit All Failed Read Actions on the SystemUnixNIST macOS Big Sur v1.4.0 - 800-53r5 Moderate