| ALMA-09-046770 | V1R4 | AlmaLinux OS 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/tallylog. | AlmaLinux OS 9 |
| OL07-00-030560 | V3R3 | The Oracle Linux operating system must audit all uses of the semanage command. | Oracle Linux 7 |
| OL07-00-030570 | V3R3 | The Oracle Linux operating system must audit all uses of the setsebool command. | Oracle Linux 7 |
| OL07-00-030580 | V3R3 | The Oracle Linux operating system must audit all uses of the chcon command. | Oracle Linux 7 |
| OL07-00-030590 | V3R3 | The Oracle Linux operating system must audit all uses of the setfiles command. | Oracle Linux 7 |
| OL07-00-030610 | V3R3 | The Oracle Linux operating system must generate audit records for all unsuccessful account access events. | Oracle Linux 7 |
| OL07-00-030620 | V3R3 | The Oracle Linux operating system must generate audit records for all successful account access events. | Oracle Linux 7 |
| OL09-00-000720 | V1R3 | OL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/faillock. | Oracle Linux 9 |
| OL09-00-000725 | V1R3 | OL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/tallylog. | Oracle Linux 9 |
| RHEL-07-030560 | V3R9 | The Red Hat Enterprise Linux operating system must audit all uses of the semanage command. | Red Hat Enterprise Linux 7 |
| RHEL-07-030570 | V3R9 | The Red Hat Enterprise Linux operating system must audit all uses of the setsebool command. | Red Hat Enterprise Linux 7 |
| RHEL-07-030580 | V3R9 | The Red Hat Enterprise Linux operating system must audit all uses of the chcon command. | Red Hat Enterprise Linux 7 |
| RHEL-07-030590 | V3R9 | The Red Hat Enterprise Linux operating system must audit all uses of the setfiles command. | Red Hat Enterprise Linux 7 |
| RHEL-07-030610 | V3R9 | The Red Hat Enterprise Linux operating system must generate audit records for all unsuccessful account access events. | Red Hat Enterprise Linux 7 |
| RHEL-07-030620 | V3R9 | The Red Hat Enterprise Linux operating system must generate audit records for all successful account access events. | Red Hat Enterprise Linux 7 |
| RHEL-09-654250 | V2R6 | RHEL 9 must generate audit records for all account creations, modifications, disabling, and termination events that affect /var/log/faillock. | Red Hat Enterprise Linux 9 |
| UBTU-20-010244 | V2R3 | The Ubuntu operating system must generate audit records for privileged activities, nonlocal maintenance, diagnostic sessions and other system-level access. | Ubuntu 20.04 |
| UBTU-22-654235 | V2R6 | Ubuntu 22.04 LTS must generate audit records for privileged activities, nonlocal maintenance, diagnostic sessions and other system-level access. | Ubuntu 22.04 |
| UBTU-24-500010 | V1R1 | Ubuntu 24.04 LTS must generate audit records for privileged activities, nonlocal maintenance, diagnostic sessions, and other system-level access. | Ubuntu 24.04 |