CCI|CCI-004046

Title

Implement multi-factor authentication for local; network; and/or remote access to privileged accounts; and/or non-privileged accounts such that one of the factors is provided by a device separate from the system gaining access.

Reference Item Details

Category: 2024

Audit Items

View all Reference Audit Items

NamePluginAudit Name
1.19 UBTU-24-100650UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.20 UBTU-24-100660UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.30 UBTU-24-100910UnixCIS Ubuntu Linux 24.04 LTS STIG v1.0.0 CAT II
1.41 AZLX-23-001115UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.43 AZLX-23-001125UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.43 RHEL-10-200610UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.44 AZLX-23-001130UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.45 RHEL-10-200611UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.46 RHEL-10-200612UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.47 RHEL-10-200620UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.56 SLES-15-010460UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.57 SLES-15-010470UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.58 OL09-00-000270UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.59 APPL-14-001150UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT I
1.59 OL09-00-000285UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.60 OL09-00-000286UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.62 RHEL-09-215075UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.66 AZLX-23-001290UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.68 AZLX-23-001300UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.71 SLES-15-020030UnixCIS SUSE Linux Enterprise Server 15 STIG v1.0.0 CAT II
1.72 OL08-00-010390UnixCIS Oracle Linux 8 STIG v1.0.0 CAT III
1.73 OL08-00-010400UnixCIS Oracle Linux 8 STIG v1.0.0 CAT II
1.76 RHEL-10-200730UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.79 OL09-00-000390UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.80 OL09-00-000400UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.81 OL09-00-000401UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.102 UBTU-22-612010UnixCIS Ubuntu Linux 22.04 LTS STIG v1.0.0 CAT II
1.124 APPL-14-003020UnixCIS Apple macOS 14 Sonoma STIG v1.0.0 CAT II
1.172 OL09-00-000925UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.173 OL09-00-000930UnixCIS Oracle Linux 9 STIG v1.0.0 CAT II
1.186 AZLX-23-002595UnixCIS Amazon Linux 2023 STIG v1.0.0 CAT II
1.340 RHEL-09-611165UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.341 RHEL-09-611170UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.342 RHEL-09-611175UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.343 RHEL-09-611180UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.344 RHEL-09-611185UnixCIS Red Hat Enterprise Linux 9 STIG v1.0.0 CAT II
1.393 RHEL-10-701220UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
1.394 RHEL-10-701230UnixCIS Red Hat Enterprise Linux 10 STIG v1.0.0 CAT II
AIX7-00-003200 - The AIX operating system must use Multi Factor Authentication.UnixDISA STIG AIX 7.x v3r1
ALMA-09-033350 - AlmaLinux OS 9 must have the opensc package installed.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-033460 - The pcscd socket on AlmaLinux OS 9 must be active.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-033570 - AlmaLinux OS 9 must have the pcsc-lite package installed.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-033680 - AlmaLinux OS 9 must implement certificate status checking for multifactor authentication.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-033790 - AlmaLinux OS 9 must enable certificate based smart card authentication.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
ALMA-09-034010 - AlmaLinux OS 9 must have the openssl-pkcs11 package installed.UnixDISA Cloud Linux AlmaLinux OS 9 STIG v1r6
APPL-14-001150 - The macOS system must disable password authentication for SSH.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-14-003020 - The macOS system must enforce smart card authentication.UnixDISA Apple macOS 14 Sonoma STIG v2r4
APPL-15-001150 - The macOS system must disable password authentication for SSH.UnixDISA Apple macOS 15 Sequoia STIG v1r7
APPL-15-003020 - The macOS system must enforce smart card authentication.UnixDISA Apple macOS 15 Sequoia STIG v1r7
APPL-26-001150 - The macOS system must disable password authentication for SSH.UnixDISA Apple macOS 26 Tahoe STIG v1r2