| ALMA-09-035660 | V1R4 | AlmaLinux OS 9 must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | AlmaLinux OS 9 |
| APPL-14-003080 | V2R4 | The macOS system must disable accounts after 35 days of inactivity. | macOS 14 - Sonoma |
| APPL-15-003080 | V1R5 | The macOS system must disable accounts after 35 days of inactivity. | macOS 15 - Sequoia |
| OL07-00-010310 | V3R3 | The Oracle Linux operating system must disable account identifiers (individuals, groups, roles, and devices) if the password expires. | Oracle Linux 7 |
| OL08-00-020260 | V2R6 | The OL 8 system-auth file must disable access to the system for account identifiers (individuals, groups, roles, and devices) with 35 days of inactivity. | Oracle Linux 8 |
| OL08-00-020261 | V2R6 | The OL 8 password-auth file must disable access to the system for account identifiers (individuals, groups, roles, and devices) with 35 days of inactivity. | Oracle Linux 8 |
| OL09-00-003065 | V1R3 | OL 9 must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Oracle Linux 9 |
| RHEL-07-010310 | V3R9 | The Red Hat Enterprise Linux operating system must disable account identifiers (individuals, groups, roles, and devices) if the password expires. | Red Hat Enterprise Linux 7 |
| RHEL-08-020260 | V2R5 | RHEL 8 account identifiers (individuals, groups, roles, and devices) must be disabled after 35 days of inactivity. | Red Hat Enterprise Linux 8 |
| RHEL-09-411050 | V2R6 | RHEL 9 must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Red Hat Enterprise Linux 9 |
| SLES-12-010340 | V3R2 | The SUSE operating system must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity after password expiration. | SUSE Linux Enterprise 12 |
| SLES-15-020050 | V2R4 | The SUSE operating system must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity after password expiration. | SUSE Linux Enterprise 15 |
| TOSS-04-020120 | V2R3 | TOSS must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Tri-Lab Operating System Stack |
| UBTU-18-010445 | V2R15 | The Ubuntu operating system must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Ubuntu 18.04 |
| UBTU-20-010409 | V2R3 | The Ubuntu operating system must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Ubuntu 20.04 |
| UBTU-22-411035 | V2R6 | Ubuntu 22.04 LTS must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Ubuntu 22.04 |
| UBTU-24-200260 | V1R1 | Ubuntu 24.04 LTS must disable account identifiers (individuals, groups, roles, and devices) after 35 days of inactivity. | Ubuntu 24.04 |
| WN10-00-000065 | V3R4 | Unused accounts must be disabled or removed from the system after 35 days of inactivity. | Microsoft Windows 10 |
| WN19-00-000190 | V3R6 | Windows Server 2019 outdated or unused accounts must be removed or disabled. | Microsoft Windows Server 2019 |
| WN22-00-000190 | V2R6 | Windows Server 2022 outdated or unused accounts must be removed or disabled. | Microsoft Windows Server 2022 |