Compliance Dictionary | Unified Compliance Framework

The "Disable commands - Database Tools | Administer | Users and Permissions | User and Group Accounts" configurable item
The daemon user's umask
The .shosts files for all users
Warning banners for gui login users
classic – local users authenticate as themselves
The "Power Users Group" configurable item
The "Disable commands - Database Tools | Administer | Users and Permission | User and Group Permissions" configurable item
Public Key Cryptography Based User-to-User protocol
The .netrc files for all users
A warning banner for all FTP users
Group settings: Users in the 'Administrators' group
Group settings: Users in the 'DnsUpdateProxy' group
list of users with their corresponding permissions
The "/sbin/csh file" configurable item
Enumerate local users on domain-joined computers
Devices: Prevent users from installing printer drivers
The .rhosts files for all users
unnecessary user identifier
Web Services User Interface
end user system
distinct user ID
user access program
OSG-EC-User
user interface standard
user-based incident
active user account
user registration process
disabled user ID
privileged user account
malicious user testing
unnecessary user account
end user policy
invalid user access
other data user
disabled user identifier
Group settings: Users in the 'DnsAdmins' group
user identification and authentication
user account provisioning
user ID tracking system
Software User Reference Documentation
list of user IDs
customer (tenant) user access
IE10 User Security Compliance
Win7SP1 User Security Compliance
special purpose user ID
internal mechanized user ID
User account is read
Account settings: Default umask for all users
Group settings: Users in the 'Guests' group
Group settings: Users in the 'Replicator' group
processes acting on behalf of authorized users
financial interests of its payment service users
The "/etc/csh file" configurable item
CCE v5 - Microsoft Internet Explorer 8
manage a user account
User account activity audit
User account is disabled
role and user access
User account is deleted
user-machine interaction specification
complementary user entity control
User Access Management procedure
end user messaging technology
vulnerability management user interface
Electronic software user manual
interface with user/customer
user rights assignment setting
Office2010SP1 User Security, 1.0
end-user computing equipment
service account user identifier
end-user computing application
The "/bin/csh file" configurable item
The '/usr/bin/csh' file: Permissions
CCE v5 - Oracle WebLogic Server 11g
cloud service user
user identifier list
Group settings: Users in the 'IIS_IUSRS' group
Group settings: Users in the 'Performance Monitor Users' group on the local machine
user registration procedure
group account user
default user identifier
user audit logging
end-user device
Group settings: Users in the 'Remote Desktop Users' group on the local machine
The "Disable commands - Database Tools | Administer | Users and Permission | User-Level Security Wizard..." configurable item
physical user access
Common User Interface
user privilege management
user access privilege
user-defined processing
allow user decision
User Interface Accessibility
strong user authentication
privileged access user
remote VPN user
user account authentication
local User account
User account alias
user satisfaction inquiry
User Name Mapping
inactive user account
User Definable Field
uses and capabilities
User Defined Function
OSG-SSLF-User
user-authentication management
generic user ID
shared user identifier
computer user identification
user interface documentation
user-installed software
third party user
User Datagram Protocol
Mail User Agent
generic user identifier
user file quota
The '/bin/csh' file: Permissions
CCE v5 - Polycom HDX 3
CCE v5 - MS SQL 2005
ICH Q10 Pharmaceutical Quality System
User account activity
user fee collection
default user ID
user-added metadata
user .rhosts file
non-organizational user
The user umask
non-consumer user
privileged user command
User Education Professional
generic user account
end user device
customer/user documentation
user access right
affected user department
Develop User Manuals
issue user ID
User Data Protocol
privileged user identification
computer user ID
unique user ID
external party user
user activity log
Office2010SP1 User Security
user is authenticated
user awareness program
default user name
user environment setting
CCE v5 - Red Hat Enterprise Linux 5
Enforce user logon restrictions
The default umask for ftp users
Turn off all user customizations
Disable user name and password
The "user stack" configurable item
The user configuration file: Permissions
Autoplay for Default User/Profile
User account name is changed
User account is locked out
The "user configuration" configurable item
Group settings: Users in the 'Enterprise Admins' group
user and administrator privilege management
continuous user account management procedure
Project Multilingual User Interface Pack
opt out by a user
User and Administrator Access List
User and Administrator Access Request
user without wide-ranging authorization
Group settings: Users in the 'Server Operators' group
The 'Screensaver timeout' setting for GNOME users: Status
The "Prevent users from configuring text color" configurable item
Group settings: Users in the 'Network Services' group
CCE v5 - Red Hat Enterprise Linux 4
Allow users to demote attachments to Level 2
The 'vold.conf' file: Authorized users of removable media
%SystemDrive%\Documents and Settings\All Users\Documents\DrWatson
Group settings: Users in the 'DHCP Administrators' group
Group settings: Users in the 'Domain Admins' group
Group settings: Users in the 'Print Operators' group
user with administrative access permissions
The "standard user" configurable item
Graphical user interface development software
user-machine interaction specification document
user access policy and procedure
Win8 User Security Compliance, 1.0
Win7SP1 User Security Compliance, 1.0
training and testing user ID
X-Windows: write .Xauthority files to users' home directories
create and manage User accounts
Visio Multilingual User Interface Pack
Account settings: Users with Root-Level Privileges (UID=0)
IE10 User Security Compliance, 1.0
Security Zones: Do Not Allow Users to Change Policies
The "default screen lock for GNOME users" configurable item
Disallow standard users from changing the PIN or password
The "Let Everyone permissions apply to anonymous users" policy
SQL Server settings: Users assigned to fixed database roles
ICH Q10 Pharmaceutical Quality System, Step 2 Version
Office Multilingual User Interface Pack
Network access: Let Everyone permissions apply to anonymous users
Add e-mail recipients to users' Safe Senders Lists
Users can't add or log on with Microsoft accounts
enrollment process to add new users to the system
up-to-date record of the users or profiles of users who have authorized access to the information system
Group settings: Users in the 'Network Configuration Operator' group
Do not enumerate connected users on domain-joined computers
WinVistaSP2 User Security Compliance, 1.0
The User Profile service: Status
The "user information" configurable item
user registration and deregistration function
Account settings: Default User accounts
Windows User Mode Driver Framework
The "XP user" configurable item
User Identification and Authentication Reporting
user account management metrics program
Administration and End User Manual
formal user access provisioning process
user with administrative account access
User account password is changed
IE8 User Security Compliance, 1.0
WinXPSP3 User Security Compliance, 1.0
training and testing user identifier
The "\"nobody\" user" configurable item
The "CDE user" configurable item
Maximum lifetime for user ticket
Windows All-User Install Agent
IE9 User Security Compliance, 1.0
suspicious user account activity procedure
User account is created
Users
User-Mode Driver Framework
su (switch user) activity
end user support communication
end-user messaging technology
WinXPSP3 User Security Compliance
WinVistaSP2 User Security Compliance
non-shared user account
The '/etc/vsftpd/vsftpd.conf' file: Users referenced
Direct Console User Interface
user identifier tracking system
external mechanized user identifier
user access review process
user account review process
end user computing application
cloud service user identifier
Removable User Identity Module
The "default umask for users" configurable item
NetBIOS Extended User Interface
employee's computer user ID
User account is unlocked
User account is enabled
User account is updated
owned by appropriate user
User Account Reporting standard
end user computing device
user access provisioning process
IE9 User Security Compliance
user account management tool
activity of authorized user
OSG-EC-User, 1.0
OSG-SSLF-User, 1.0
special purpose user identifier
internal mechanized user identifier
service account user ID
external mechanized user ID
ACH Operating Rules OCC Bulletin 2004 58
User Access Logging Service
The "FTP user" configurable item
CCE v5 - Microsoft Windows Server 2k8 R2
Group settings: Users in the 'Domain Guests' group
Classified Document Container Security File - Combinations and Users
Group settings: Users in the 'Account Operators' group
Group settings: Users in the 'Cryptographic Operators' group
Removable media that is mountable by console users
The "/usr/bin/csh file" configurable item
Always require users to connect to verify permission
The ability for users to perform interactive startups
The "warning banner for GNOME users" configurable item
Group settings: Users in the 'Backup Operators' group
Group settings: Users in the 'Schema Admins' group
Account settings: Users having access to 'ALL_' views
The 'Screensaver lock' setting for GNOME users: Status
Audit Log field: User ID
prompt user to use defaults
Group settings: Users in the 'Cert Publisher' group
The "Prevent Users from Installing Printer Drivers" policy
Autoplay for Current User
risk posed by user
User permission is assigned
User permission is removed
Account settings: User accounts
Hardware User Reference Documentation
Lock Inactive User Account
list of user identifiers
employee's computer user identification
IE8 User Security Compliance
The "default umask for ftp users" configurable item
user account management procedure
unique User Identification Number
review of user access
user account access reviewer
special purpose user ID
non-individual user account
cloud service user ID
Contraceptive device accessories for female users
Win8 User Security Compliance
CCE v5 - Microsoft Office 2010
multi-user
user entitlement
CCE v5 - Windows Vista
CCE v5 - Windows 2000
CCE v5 - IIS 6
telephone-initiated ACH transaction
3 CCR 702-6
user authenticator
new user
user entity
user account
remote user
user control
user awareness
user functionality
user deletion
standard user
active user
general user
power user
user administration
user data
user identifier
user representative
user initialization
user key
service user
IT user
root user
computer user
user mode
train user
user documentation
user guide
User Experience
Administrators and Power Users
user attribute
untied user
user education
CCE v5 - Sun Solaris 8
unauthorized user
user permission
user-friendly
user creation
user error
user manual
business user
user risk
user group
user list
suspicious user
user interface
user name
drug user
tobacco user
snuff user
user department
end-user
user input
user type
unique user
terminated user
calling user
user auditor
data user
organizational user
authenticated user
user organization
user support
user access
Federal Wireless Users Forum
administrative user
ACH transaction
ACH return
ACH payment
ACH operator
ACH file
ACH activity
ACH authorization
ACH service
CCI component
ACH item
ACH process
ACH capture
C/CE
Container settings: Users in the 'Users' container
CCI assembly
ACH debit
CCI equipment
users account
ACH entry
ccc
CCH account
ACH
CCO
User settings: Users with duplicate UIDs
Fusers
csh shell settings: Default umask for all users
CCS
CCD
Authenticated Users
User settings: Users running the uucico daemon
user
users' name
ACH router
ACH instruction
ACH batch
ACH credit
CCE v5 - Apache 2.2
international ACH requirement
ACH processing activity
User Account Control: Behavior of the elevation prompt for standard users
Security Features Users Guide
ACH single-entry
unauthorized ACH debit
ACH credit activity
secured XP users OU
ACH exposure limit
Administrators and Interactive Users
cc
user's responsibility
user's manual
Ushers uniforms
ACH transaction processing procedure
internet initiated ACH transaction
uncollected ACH transaction
ACH service provider
ACH device
Group settings: Users in the 'Domain Users' group
Group settings: Users in the 'Users' group
list of users
objects and users
ACH debit return
users with privilege
Remote desktop Users
Group settings: Users in the 'Power Users' group
The '/etc/security/user' file: Default umask for new users
user's guide
ACH debit activity
ACH debit activity
ACH settlement date
ACH contingency plan
uncollected ACH deposit
ACH credit transaction
unauthorized ACH transaction
user application
user log
database user
provisioning user access
privileged user ID
user ID list
non-privileged user
dedicated user account
third-party user
long user session
user account credential
end user community
information system user
user access review
interactive user access
unique user identification
local user authentication
set user ID
non-administrator user
assign user permission
User Manual Developer
shared user account
Group settings: Users in the 'Incoming Forest Trust Builders' group user on the domain
The '/sbin/csh' file: Permissions
CCE v5 - Microsoft Exchange 2007
CCE v5 - Sun Solaris 9
CCE v5 - Windows Server 2008
CCE v5 - MS SQL 2000
Regulation CC
Group settings: Users in the 'Performance Monitor Users' group on the domain
Group settings: Users in the 'Performance Log Users' group on the domain
user dot-file
Information Technology user
User Access Management
Graphical User Interface
cloud user
security aware user
end user instruction
vendor managed user
user authentication mechanism
shared user access
Core dumps for all users
privileged user access
payment service user
user awareness programme
unauthorized vSphere user
end-user system
User Identification Number
user-level information
CCE v5 - Microsoft Office 2007
user computing session
CCE v5 - Internet Explorer 7
CCE v5 - Sun Solaris 10
CCE v5 - Windows Server 2003
%SystemDrive%\Documents and Settings\All Users
Classic - local users authenticate as themselves
Cloud Security Alliance CCM V1.3
CCE v5 - Microsoft Exchange 2010
user interface document
shared user ID
Group settings: Users in the 'Distributed COM Users' group on the local machine
User Principle Name
Group settings: Users in the 'Performance Log Users' group on the local machine
application file user
User Partnership Program
user account management
User Account Control
single user mode
user reference documentation
privileged user identifier
end user computing
user awareness training
user-subject binding
User Manual Tester
User Support Specialist
manage user access
temporary user account
user's network location
Fast User Switching
Group settings: Users in the 'Remote Desktop Users' group on the domain
CCE v5 - Apache 2.0
user interaction
user validation
CCE v5 - HP-UX 11.23
Internet-initiated ACH debit
CCE v5 - AIX 5.3
CCE v5 - Windows XP
high risk ACH transaction
user-id
internet user
privileged user
anonymous user
user privilege
user study
user modification
user profile
user activity
external user
user request
User Right
mobile user
user directory
concurrent user
prompt user
user password
GNOME user
authorized user
end user
affected user
user registration
tied user
system user
user authentication
user ID
user confirmation
telephone initiated ACH transaction
CCE v5 - Tomcat 5
CCE v5 - Tomcat 6
users without wide-ranging authorisation
CCE v5 - Apache 1.3
CCE v5 - Tomcat 4
high-risk ACH transaction
internet-initiated ACH transaction
CCE v5 - Windows 7
ACH debit return volume
contraceptive device for female users
contraceptive accessory for female users
User Advocacy
Group settings: Users in the 'Distributed COM Users' group on the domain
The '/etc/csh' file: Permissions
The "csh shell" configurable item
CCE v5 - IIS 5
Contraceptive devices for female users
telephone-initiated ACH debit
user session
user testing
user action
user credential
user identity
user identification
user acceptance
user acknowledgement
internal user
user role
user management
user need
user manager
authorised user
emergency user
user information
enterprise user
Group settings: Users in the 'Event Log Readers' group
develop product and service solution with customers and users
culture that fosters responsible and controlled access for users
The %SystemDrive%\Documents and Settings\All Users directory: Permissions
The "Prevent users from configuring background color" configurable item
The "default screen lock for CDE users" configurable item
Allow users to connect remotely using Remote Desktop Services
The "Set User ID" configurable item
Audit Policy settings: User Account Management
The "local user logon" configurable item
must be independent of User accounts
prompt user based on computer security
The "user profile service" configurable item
Audit settings: 'root user' activity (audit_user)
The "user home directory" configurable item
%SystemDrive%\Documents and Settings\Default User
%SystemDrive%\Documents and Setting\Default User
The "Message text for users attempting to log on" policy
"Devices: Restrict CD-ROM access to locally logged on users"
%SystemDrive%\Documents and Settings\All Users\Documents\DrWatson\drwts32.log
User Account Control: Virtualize file and registry write failures to per-user locations
Group settings: Users in the 'IIS Worker Process' (IIS_WPG) group
Group settings: Users in the 'Read-Only Domain Controllers' group
%SystemDrive%\Documents and Settings\All Users\Documents\DrWatson\drwtsn32.log
Interactive logon: Message title for users attempting to log on
The "Prevent users from configuring the hover color" configurable item
Product or Solution User Experience Training
user registration and de-registration process
user identification and authentication metrics program
Remote Authentication Dial-In User Service
not changeable by the end user
Maximum lifetime for user ticket renewal
The "user audit file" configurable item
The screensaver for the default user
The "per-user location" configurable item
The "Maximum User Renewal Lifetime" policy
The "Maximum User Ticket Lifetime" policy
The Each user home directory: Permissions
The screensaver for the current user
Auditing for User accounts as appropriate
The 'system' and 'user' accounts (logins)
prompt user to use persisted data
The "User Rights Assignment" configurable item
The "remote desktop user" configurable item
The "user .netrc file" configurable item
end user computing device security guideline
Screen Lock settings: User Authentication Required
types of transactions that authorized users are permitted to execute
The "Prevent users from choosing default text size" configurable item
Group settings: Users in the 'Pre-Windows 2000 Compatible' group
Group settings: Users in the 'Group Policy Creator Owners' group
"Devices: Restrict floppy access to locally logged on users only"
The "Enforce user login restrictions" policy
access right granted to each user
Prompt for user name and password
The user home directories file: Permissions
The PATH for the root user
The vsftpd service: Local user logon
The "User Profile Service" configurable item
Directories owned by the root user
The "user mounted device" configurable item
The "user dot file" configurable item
ICH Guidance for Industry, E6 Good Clinical Practice: Consolidated Guidance
The "Prevent users from customizing attachment security settings" configurable item
Terminal Services: The "Limit Users to One Remote Session" policy
Group settings: Users in the 'Allowed RODC Password Replication' group
Prevents users from uploading document templates to the Office.com Community
types of functions that authorized users are permitted to execute
Group settings: Users in the 'Denied RODC Password Replication' group
Security Zones: Do Not Allow Users to Add/Delete Sites
The "Prevent Users from Changing Office Encryption Settings" configurable item
The default umask for all users for the bash shell
Do not allow users to enable or disable add-ons
Interactive logon: Message text for users attempting to log on
The gdm.conf file: 'Greeter' parameter (Warning Banner for GDM Users)
PCI Mobile Payment Acceptance Security Guidelines for Merchants as End-Users
Account settings: The "enable computer and User accounts to be trusted for delegation" user right
procedure for user registration and de-registration
failure to restrict user access to functions
user and administrator privilege management metrics program
Audit Policy: Account Management: User Account Management
The 'CREATE USER' privilege: Auditing on usage
The loginlog file: Account Ownership user right
Audit Log event: su (switch user) activity
The maximum lifetime for Kerberos user tickets
The home directories for all User accounts.
The home directory for each User account
Inter-TSF user data integrity transfer protection
Account settings: The "debug programs" user right
Group settings: Users in the 'Telnet Clients' group on the domain
process to independently monitor administrators and other users with higher privileges
Group Policy settings: Prevent users from sharing files within their profile
The "Behavior of the elevation prompt for standard users" configurable item
The "Logon" configurable item: Do not allow anonymous users or accounts
The %SystemDrive%\Documents and Settings\All Users\Documents\DrWatson directory: Permissions
The "general user ID parameter" configurable item
The "user-initiated system crashes" configurable item
The "locally logged-on user" configurable item
The "Single-user mode authentication" configurable item
Prevent per-user installation of ActiveX controls
The "Enable User Control Over Installs" policy
authenticator for a user account is changed
Data base user interface and query software
The "Automatically Log Off Users When login Time Expires (local)" policy
Never allow users to specify groups when restricting permission for documents
The "Master user ID parameter" configurable item
The "user dot file permissions" configurable item
The Disable user name and password setting
Audit Log event: User Account Management success
Display Last User Name in login Screen
The screen saver for the default user
The home directory of the root user
Account settings: The built-in 'Administrator' user
The 'DROP USER' privilege: Auditing on usage
Allow users with earlier versions of Office to read with browsers
The "Prevent users from sharing files within their profile" configurable item
The "Restrict level of calendar details users can publish" configurable item
allow everywhere except To and CC field
manage solution definition process and user expectations
Disable Per-User Installation of ActiveX Controls
The current user: The "screensaver timeout" policy
The Fast User Switching service: Startup Type
The screen saver for the current user
Account settings: The built-in 'Guest' user
Inter-TSF user data confidentiality transfer protection
read all User accounts command is issued
delete all User accounts command is issued
formal user registration and de-registration process
authenticator is added to a user account
The "subadministrators user ID parameter" configurable item
Audit Log event: User Account Management failure
bind new authenticator to a user account
User Identification, Profiles, Authorizations, and Password File
Account settings: PATH variable for root user
The "Disable user name and password" setting
The "Customize User Agent String" configurable item
The '/etc/cups/cupsd.conf' file: 'User' setting
The ALTER USER privilege: Auditing on usage
%SystemDrive%\Documents and Settings\All Users\Application Data\Microsoft\HTML Help ACL
.forward files should be allowed or disallowed as appropriate for all users
The "Prevent users from changing permissions on rights managed content" configurable item
The "\"Restrict Terminal Server users to a single remote session\"" configurable item
Group settings: Users in the 'Windows Authorization Access' group on the domain
types of transactions and functions that authorized users are permitted to execute
The 'Graphical User Interface (GUI)' startup environment: Status
policies and procedures for user identification management control
Simple Traversal of User Datagram Protocol Through NATS
Account settings: The "profile single process" user right
Account settings: The "increase scheduling priority" user right
Prevent users from allowing unsafe file types to be attached to forms
Avahi publishing of local information by user applications
Account settings: The "create a pagefile" user right
Account settings: The "bypass traverse checking" user right
Account settings: The "deny login locally" user right
The authentication mechanism (SYSTEM attribute) for each user
Prevent deleting websites that the user has visited
World-writable folders in root user PATH ('.'): Existence
Account settings: 'Retry Limit' for User Account Lockout
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell
The "Do not allow users to change permissions on folders" configurable item
Group settings: Users in the 'Telnet Clients' group on the local machine
No auto-restart with logged on users for scheduled automatic updates installations
Group settings: Users in the 'RAS and IAS Servers' group on the domain
PCI Mobile Payment Acceptance Security Guidelines for Merchants as End-Users, Version 1.0
ACH (Automated Clearing House) Operating Rules OCC Bulletin 2004-58, December 2004
The "user-mounted removable file system" configurable item
OLAP PivotTable User Defined Function (UDF) security setting
Account settings: The "generate security audits" user right
Account settings: the "launch DCOM applications" user right
The "\"Devices: Restrict floppy access to locally logged-on users only\"" configurable item
The "Prevents users from uploading document templates to the Office Online community." setting
Group Policy settings: Security Zones: Do Not Allow Users to Add/Delete Sites
The "Disable Channel User Interface Completely" configurable item
Disable all user customization of Quick Access Toolbar
End User Computing Security Policies OIS-1001, 1.0
user under the responsibility of the cloud provider
Account settings: Password Protection on Default User accounts
end user developed program codes, scripts and macros
The '.shosts' file: Number in user home directories
The "permissions on user home directory" configurable item
Account settings: The "log on locally" user right
The "Enable User Control Over Installs" configurable item
Account settings: The "Create Symbolic Links" user right
Account settings: The "Create global objects" user right
Audit Log event: Use of change user functions
Access to secure RPC for the 'nobody' user
The maximum lifetime for Kerberos user ticket renewal
The "Enable User to Patch Elevated Products" policy
The 'User accounts' having no 'home directory' assigned
Interactive logon: Do not display last user name
The "\"Devices: Restrict CD-ROM access to locally logged-on users\"" configurable item
The "Security Zones: Do not allow users to add/delete sites" configurable item
The %SystemDrive%\Documents and Settings\All Users\Documents\DrWatson\drwtsn32.log file: Permissions
ICH Guidance for Industry, Q7A Good Manufacturing Practice Guidance for Active Pharmaceutical Ingredients
Interactive logon: Prompt user to change password before expiration
Account settings: The "Modify an object label" user right
SSH maximum number of retries for authentication user right
Account settings: The "Deny log on locally" user right
The "Do not allow users to upgrade Information Rights Management configuration" configurable item
PCI Mobile Payment Acceptance Security Guidelines for Merchants as End-Users, Version 1.1
The '/etc/dfs/dfstab' file: 'NFS Exports' with users/permissions assigned for each
The "Allow users to apply BitLocker protection on removable data drives" configurable item
Users should be listed in the ASET userlist file or not as appropriate
The active and available 'NFS Exports' with users/permissions assigned for each (exportfs)
The "\"Prevent users from uploading document templates to the Office Online community\"" configurable item
Account settings: The "shut down the system" user right
Account settings: The "synchronize directory service data" user right
Oracle settings: Accounts having access to 'BECOME USER' privilege
Account settings: The "perform volume maintenance tasks" user right
Account settings: The "create permanent shared objects" user right
Account settings: The "Create a token object" user right
Oracle settings: User Accounts (schema owner accounts are locked)
function for managing the access rights of the cloud service customer's cloud service users
The "\"Set control ItemProperty pompt (Prompt User | Automatically Approve | Automatically Deny | Prompt user based on computer security)\"" configurable item
The %SystemDrive%\Documents and Settings\All Users\Application Data\Microsoft\HTML Help ACLdirectory : Permissions
The "Maximum lifetime for user ticket renewal" configurable item
Make Proxy settings Per-Machine (Rather Than Per-User)
Account settings: The "add workstations to domain" user right
Account settings: The "lock pages in memory" user right
China Telecommunications and Internet Personal User Data Protection Regulations
Account settings: The "modify firmware environment values" user right
Account settings: The "restore files and directories" user right
The "Disable user entries to server list" configurable item
Account settings: The "Change the time zone" user right
The %SystemDrive%\Documents and Settings\Default User directory: Permissions
Account settings: The "change the system time" user right
The "Prevents users from uploading document templates to the Office Online community" configurable item
The default setting for all users to allow terminal messages via the mesg utility.
Account settings: The "deny login as a service" user right
The '/etc/shadow' file: 'NP' setting for each User account
Password settings: The "store password using reversible encryption for all users in the domain" policy
Account settings: The "Impersonate a client after authentication" user right
Account settings: The "Allow logon through Terminal Services" user right
Devices: Restrict floppy access to locally logged-on user only
Account settings: The "load and unload device drivers" user right
Account settings: The "deny login through Terminal Services" user right
Enable computer and user accounts to be trusted for delegation
Interactive logon: Display user information when the session is locked
Account settings: Existence of at least one 'local User account'
Account settings: The "Account is trusted for delegation" user right
Account settings: The "Allow log on locally (SeInteractiveLogonRight)" user right
Account settings: The "replace a process-level token" user right
The "Enable User to Use Media Source While Elevated" policy
Account settings: The "log on as a service" user right
The "Enable User to Browser for Source While Elevated" policy
The "Services for Unix User Name Mapping service" configurable item
User Account Control: Run all administrators in Admin Approval Mode
User Account Control: Detect application installations and prompt for elevation
The "Kerberos policy: Maximum lifetime for user ticket" configurable item
The behavior surrounding Anonymous users' ability to display lists of SAM accounts should be correct
The "Allow users to suspend and decrypt BitLocker protection on removable data drives" configurable item
The "Windows Driver Foundation - User-mode Driver Framework" configurable item
Account settings: The "allow login through Terminal Services" user right
Account settings: The "remove computer from docking station" user right
The "Turn off User Installed Windows Sidebar Gadgets" configurable item
Time without user input before password must be re-entered
The "Prevent deleting websites that the user has visited" setting
Account settings: The "screensaver timeout" policy for the default user
Account settings: The "back up files and directories" user right
The (Windows Driver Foundation) User Mode Driver Framework service: Status
Terminal Services: The set of users or groups allowed to make unsolicited offers of remote assistance
Account settings: The "Manage Auditing and Security Log (SeSecurityPrivilege)" user right
The Services for Unix User Name Mapping service service: Startup Type
Account settings: User accounts having access to the 'sys-suspend' capability
The "Display user information when the session is locked" configurable item
The "Prevent users from configuring the color of links that have already been clicked" configurable item
The "\"Disable all user customization of Quick Access Toolar\"" configurable item
Account settings: The "log on as a batch job" user right
The "\"Set Outlook object model Custom Actions execution prompt (Prompt User | Automatically Approve | Automatically Deny | Prompt user based on computer security)\"" configurable item
Account settings: The "force shutdown from a remote system" user right
Include local path when user is uploading files to a server
Account settings: The "deny login as a batch job" user right
The "Report login Server Not Available During User logon" configurable item
User Account Control: Only elevate executables that are signed and validated
The '/etc/user_attr' file: User accounts having the 'lock_after_retries' setting disabled
The "Turn off suggestions for all user-installed providers" configurable item
The requirement for a password to boot into single-user mode
Devices: Restrict CD-ROM access to locally logged-on user only
The "Restrict Floppy Access to Locally Logged-On User Only" policy
Account settings: The "adjust memory quotas for a process" user right
development, test, and/or custom application accounts, user IDs, and passwords
IIA Global Technology Audit Guide (GTAG) 14: Auditing User-developed Applications
The behavior surrounding Anonymous users' ability to display lists of SAM accounts and shares should be correct
Account settings: The "Access credential Manager as a trusted caller" user right
User Account Control: Switch to the secure desktop when prompting for elevation
The "Restrict CD-ROM Access to Locally Logged-On User Only" policy
The registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\User Shell: Permissions
The "Prevent users from configuring the color of links that have not yet been clicked" configurable item
Account settings: The "Allow log on through Remote Desktop Services" user right
The "Disable user customization of Quick Access Toolbar via UI" configurable item
User Account Control: Admin Approval Mode for the Built-in Administrator account
The "Disable user customization of Quick Access Toolbar via UI" configurable item
Account settings: The "take ownership of files or other objects" user right
User-initiated system crashes via the CTRL+SCROLL LOCK+SCROLL LOCK sequence
The amount of idle time required before disconnecting a session user right
Account settings: The "Access this computer from the network (SeNetworkLogonRight)" user right
The "Enable computer and User accounts to be trusted for delegation" configurable item
Turn on the auto-complete feature for user names and passwords on forms
The "\"Report when logon server was not available during user logon\"" configurable item
The "User Account Control: Allow UIAccess applications to prompt for elevation" configurable item
Account settings: The "deny access to this computer from the network" user right
The "Allow active content from CDs to run on user machines" configurable item
User Account Control: Only elevate UIAccess applications that are installed in secure locations
The "Prompt user to choose security settings if default settings fail" configurable item
The "Limit local account user of blank passwords to console login only" policy
The "User Account Control: Allow UIAccess applications to prompt for elevation" configurable item
Password settings: New users should be required or not required to change their password on first login as appropriate
The cron.allow file should be configured with the set of users permitted to use the cron facility as appropriate
Prevent users from bypassing SmartScreen Filter's application reputation warnings about files that are not commonly downloaded from the Internet
The at.allow file should be configured with the set of users permitted to use the at facility as appropriate
The "Allow Active Content from CD's to Run on User Machine" configurable item
System cryptography: Force strong key protection for user keys stored on the computer
Account settings: The "Act as part of the operating system (SeTcbPrivilege)" user right
The user audit file should contain an appropriate set of never-audit flags
NIST SP 800-111, Guide to Storage Encryption Technologies for End User Devices
The "Disable all user customization of Quick Access Toolbar - Disallow in Outlook" configurable item
The "Disable all user customization of Quick Access Toolbar - Disallow in Word" configurable item
The noexec_user_stack flag should be set on the user stack or not as appropriate
The at.deny file should be configured with the set of users not permitted to use the at facility as appropriate
The cron.deny file should be configured with the set of users not permitted to use the cron facility as appropriate
User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode
The "Disable all user customization of Quick Access Toolbar - Disallow in Access" configurable item
The "Disable all user customization of Quick Access Toolbar - Disallow in PowerPoint" configurable item
Computer-wide, rather than per-user, use of Microsoft Spynet Reporting for Windows Defender
The "Enable computer and User accounts to be trusted for delegation (SeEnableDelegationPrivilege)" configurable item
The "Disable all user customization of Quick Access Toolbar - Disallow in Excel" configurable item
The "Disable user customization of Quick Access Toolbar via UI - Disallow in Excel" configurable item
The "Disable user customization of Quick Access Toolbar via UI - Disallow in Access" configurable item
Programs executed through the aliases file should reside a directory with an appropriate user owner
The "Add a specific list of search providers to the user's search provider list" configurable item
User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop
Massachusetts General Laws,Title XV, Ch 93, Section 105, Credit cards checks personal identification information
The "Disable user customization of Quick Access Toolbar via UI - Disallow in Word" configurable item
information regarding the circumstance in which it uses cryptography to protect the information it processes
The "Disable user customization of Quick Access Toolbar via UI - Disallow in PowerPoint" configurable item
The "Disable user customization of Quick Access Toolbar via UI - Disallow in Outlook" configurable item
Account settings: User accounts and/or roles having access to the 'Oracle Enterprise Manager' (OEM)
The "Configure user storage of BitLocker 256-digit recovery key" configurable item for fixed data drives
The "Prompt user to choose security settings if default settings fail" configurable item for Outlook 2007
Access to single-user mode (maintenance mode) should require the root password or not as appropriate
The "Configure user storage of BitLocker 256-digit recovery key" configurable item for removable data drives
The "Configure user storage of BitLocker 256-digit recovery key" configurable item for operating system drives
The "\"Restrict level of calendar details users can publish (All options are available | Disables 'Full details' | Disables 'Full details' and 'Limited details')\"" configurable item
The Commonwealth of Massachusetts, Title XV, Ch 93, Section 105, Credit cards; checks; personal identification information
The "\"Disable user entry to server list (Publish default, allow others | Publish default, disallow others)\"" configurable item
The "\"System cryptography: Force strong key protection for user keys stored in the computer\"" configurable item
The "Configure user storage of BitLocker 48-digit recovery password" configurable item for removable data drives
The "Configure user storage of BitLocker 48-digit recovery password" configurable item for operating system drives
The "Configure user storage of BitLocker 48-digit recovery password" configurable item for fixed data drives
The "Allow video and animation on a Web page that uses a legacy media player" configurable item
"OLAP PivotTable User Defined Function (UDF) security setting (Allow ALL UDFs | Allow safe UDFs only | Allow NO UDFs)"
The Dovecot option to drop privileges to user before executing mail process should be enabled or not as appropriate
The "\"Display online status on a person name (Never | Everywhere except To and CC field | Everywhere)\"" configurable item
NFS should be configured to respond or not as appropriate to client requests that do not include a user id
The "Internet Zone: Allow video and animation on a Web page that uses a legacy media player" configurable item
The "Local Machine Zone: Allow video and animation on a Web page that uses a legacy media player" configurable item
The "Locked-Down Intranet Zone: Allow video and animation on a Web page that uses a legacy media player" configurable item
Computer-wide, rather than per-user, assignment of sites to zones for Internet Explorer should be enabled or disabled as appropriate
The "\"Run Programs (disable (don't run any programs) | enable (prompt user before running) | enable all (run without prompting))\"" configurable item
firewall is unable to notify the user that it blocks an application from accepting an incoming connection on the network
The "Restricted Sites Zone: Allow video and animation on a Web page that uses a legacy media player" configurable item
Account settings: The "Deny log on through Remote Desktop Services" or the "Deny log on through Terminal Services" user right
People's Republic of China, Ministry of Industry and Information Technology Decree No. 24, Telecommunications and Internet Personal User Data Protection Regulations
The "Locked-Down Trusted Sites Zone: Allow video and animation on a Web page that uses a legacy media player" configurable item
The "Locked-Down Restricted Sites Zone: Allow video and animation on a Web page that uses a legacy media player" configurable item
The "\"Set maximum level of online status on a person name (Do not allow | Allow everywhere except To and CC field | Allow everywhere)\"" configurable item
policies and procedures that, based upon the covered entity's or the business associate's access authorization policies, establish, document, review, and modify a user's right of access