CSCv6|3

Title

Secure Configurations for Hardware and Software

Description

Secure Configurations for Hardware and Software

Reference Item Details

Reference: CIS Critical Security Controls v6

Category: Secure Configurations for Hardware and Software

Family: System

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
1.1.1 Ensure the container host has been Hardened	Unix	CIS Docker v1.2.0 L1 Linux Host OS
1.1.3.8.2 Set 'Microsoft network server: Amount of idle time required before suspending session' to '15 or fewer minute(s)'	Windows	CIS Windows 8 L1 v1.0.0
1.1.25 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes 1.11 Benchmark v1.3.0 L1
1.1.25 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes 1.13 Benchmark v1.4.1 L1
1.1.25 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes 1.8 Benchmark v1.2.0 L1
1.1.25 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes 1.13 Benchmark v1.4.0 L1
1.1.26 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1
1.2 Ensure the container host has been Hardened	Unix	CIS Docker Community Edition v1.1.0 L1 Linux Host OS
1.2.1 Ensure the container host has been Hardened	Unix	CIS Docker v1.3.1 L1 Linux Host OS
1.2.27 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes v1.20 Benchmark v1.0.0 L1 Master
1.2.28 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes Benchmark v1.5.1 L1
1.2.28 Ensure that the --service-account-key-file argument is set as appropriate	Unix	CIS Kubernetes Benchmark v1.6.1 L1 Master
1.3.6 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L2
1.3.6 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.8 Benchmark v1.2.0 L2
1.6.2 Create Pod Security Policies for your cluster	Unix	CIS Kubernetes 1.8 Benchmark v1.2.0 L1
1.6.2 Create Pod Security Policies for your cluster	Unix	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L1
1.6.5 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.11 Benchmark v1.3.0 L2
1.6.5 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.13 Benchmark v1.4.0 L2
1.6.5 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.13 Benchmark v1.4.1 L2
1.6.6 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.7.0 Benchmark v1.1.0 L2
1.6.6 Apply Security Context to Your Pods and Containers	Unix	CIS Kubernetes 1.8 Benchmark v1.2.0 L2
1.13 Ensure 'Lock SIM card' is set to 'Enabled'	MDM	AirWatch - CIS Google Android v1.3.0 L2
1.13 Ensure 'Lock SIM card' is set to 'Enabled'	MDM	MobileIron - CIS Google Android v1.3.0 L2
1.13 Ensure 'Lock SIM card' is set to Enabled	MDM	AirWatch - CIS Google Android v1.2.0 L2
1.13 Ensure 'Lock SIM card' is set to Enabled	MDM	MobileIron - CIS Google Android v1.2.0 L2
18.4.14.1 (L1) Ensure 'Hardened UNC Paths' is set - NETLOGON RequireIntegrity	Windows	CIS Microsoft Windows 10 Enterprise (Release 1607) v1.2.0 Level 1 Bitlocker
18.4.14.1 (L1) Ensure 'Hardened UNC Paths' is set - NETLOGON RequireMutualAuthentication	Windows	CIS Microsoft Windows 10 Enterprise (Release 1607) v1.2.0 Level 1 Bitlocker
18.4.14.1 (L1) Ensure 'Hardened UNC Paths' is set - SYSVOL RequireIntegrity	Windows	CIS Microsoft Windows 10 Enterprise (Release 1607) v1.2.0 Level 1 Bitlocker
18.4.14.1 (L1) Ensure 'Hardened UNC Paths' is set - SYSVOL RequireMutualAuthentication	Windows	CIS Microsoft Windows 10 Enterprise (Release 1607) v1.2.0 Level 1 Bitlocker
18.5.14.1 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' - NETLOGON	Windows	CIS Windows Server 2012 R2 DC L1 v2.4.0
18.5.14.1 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' - NETLOGON	Windows	CIS Windows Server 2012 R2 MS L1 v2.4.0
18.5.14.1 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for SYSVOL shares'	Windows	CIS Windows Server 2012 R2 DC L1 v2.4.0
18.5.14.1 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for SYSVOL shares'	Windows	CIS Windows Server 2012 R2 MS L1 v2.4.0
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1 Bitlocker
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - NETLOGON	Windows	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1 Bitlocker
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL	Windows	CIS Microsoft Windows 8.1 v2.4.1 L1 Bitlocker
18.5.14.1 (L1) Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for all NETLOGON and SYSVOL shares' - SYSVOL	Windows	CIS Microsoft Windows 8.1 v2.4.0 L1
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all NETLOGON shares'	Windows	CIS Windows Server 2012 DC L1 v2.1.0
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all NETLOGON shares'	Windows	CIS Windows Server 2012 MS L1 v2.2.0
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all NETLOGON shares'	Windows	CIS Windows Server 2012 MS L1 v2.1.0
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all SYSVOL shares'	Windows	CIS Windows Server 2012 MS L1 v2.1.0
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all SYSVOL shares'	Windows	CIS Windows Server 2012 DC L1 v2.1.0
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all SYSVOL shares'	Windows	CIS Windows Server 2012 MS L1 v2.2.0
18.5.14.1 Ensure 'Hardened UNC Paths' is 'Enabled, with Require Mutual Authentication and Require Integrity set for all SYSVOL shares'	Windows	CIS Windows Server 2012 DC L1 v2.2.0
18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for NETLOGON	Windows	CIS Microsoft Windows 8.1 L1 Bitlocker v2.3.0
18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for NETLOGON	Windows	CIS Microsoft Windows 8.1 L1 v2.3.0
18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for SYSVOL'	Windows	CIS Microsoft Windows 8.1 L1 Bitlocker v2.3.0
18.5.14.1 Ensure 'Hardened UNC Paths' is set to 'Enabled, with 'Require Mutual Authentication' and 'Require Integrity' set for SYSVOL'	Windows	CIS Microsoft Windows 8.1 L1 v2.3.0

Detections

Analytics

CSCv6|3

Title

Description

Reference Item Details

Audit Items