[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

95906

 
 

909

 
 

77986

 
 

109

Paid content will be excluded from the download.


Download | Alert*


CCE-25187-6
Auditing of "System: Other System Events" events on success should be enabled or disabled as appropriate.

CCE-24639-7
The 'Windows Firewall: Domain: Apply local firewall rules' setting should be configured correctly.

CCE-24680-1
The "Password protect the screen saver" setting should be configured correctly for the default user.

CCE-23587-9
Domain controller: LDAP server signing requirements

CCE-24134-9
The 'User Account Control: Admin Approval Mode for the Built-in Administrator account' setting should be configured correctly.

CCE-23082-1
The "Network access: Do not allow anonymous enumeration of SAM accounts and shares" setting should be configured correctly.

CCE-24243-8
The 'Domain member: Disable machine account password changes' setting should be configured correctly.

CCE-24748-6
The "Interactive logon: Do not display last user name" setting should be configured correctly.

CCE-23794-1
The Windows Audio service should be enabled or disabled as appropriate.

CCE-23880-8
The 'User Account Control: Only elevate executables that are signed and validated' setting should be configured correctly.

CCE-25198-3
The 'Domain member: Require strong (Windows 2000 or later) session key' setting should be configured correctly.

CCE-24812-0
The "Domain member: Digitally sign secure channel data (when possible)" setting should be configured correctly.

CCE-24714-8
Auditing of "Object Access: Filtering Platform Connection" events on failure should be enabled or disabled as appropriate.

CCE-22918-7
Auditing of 'Logon-Logoff: Network Policy Server' events on failure should be enabled or disabled as appropriate.

CCE-25372-4
Auditing of 'System: IPsec Driver' events on success should be enabled or disabled as appropriate.

CCE-24824-5
Auditing of "Object Access: Filtering Platform Packet Drop" events on success should be enabled or disabled as appropriate.

CCE-23619-0
Auditing of 'DS Access: Detailed Directory Service Replication' events on failure should be enabled or disabled as appropriate.

CCE-24519-1
The 'User Account Control: Behavior of the elevation prompt for standard users' setting should be configured correctly.

CCE-24035-8
Auditing of 'Object Access: Detailed File Share' events on failure should be enabled or disabled as appropriate.

CCE-24572-0
Specify the maximum log file size (KB)

CCE-24583-7
Control Event Log behavior when the log file reaches its maximum size

CCE-24000-2
The Distributed Transaction Coordinator service should be enabled or disabled as appropriate.

CCE-23892-3
Windows Firewall: Public: Outbound connections

CCE-24231-3
The "User Account Control: Virtualize file and registry write failures to per-user locations" setting should be configured correctly.

CCE-23782-6
Control Event Log behavior when the log file reaches its maximum size

CCE-24738-7
The 'Windows Firewall: Private: Apply local connection security rules' setting should be configured correctly.

CCE-25274-2
The 'Recovery console: Allow floppy copy and access to all drives and all folders' setting should be configured correctly.

CCE-25297-3
The Application Layer Gateway Service should be enabled or disabled as appropriate.

CCE-25043-1
The 'Act as part of the operating system' user right should be assigned to the appropriate accounts.

CCE-24277-6
Specify the maximum log file size (KB)

CCE-24965-6
Auditing of "Policy Change: Filtering Platform Policy Change" events on failure should be enabled or disabled as appropriate.

CCE-25176-9
The "Devices: Prevent users from installing printer drivers" setting should be configured correctly.

CCE-23900-4
Windows Firewall: Public: Display a notification

CCE-24452-5
The 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' setting should be configured correctly.

CCE-23716-4
The 'Microsoft network server: Digitally sign communications (always)' setting should be configured correctly.

CCE-24682-7
The 'Modify an object label' user right should be assigned to the appropriate accounts.

CCE-25527-3
Auditing of 'System: Security System Extension' events on success should be enabled or disabled as appropriate.

CCE-24498-8
The "User Account Control: Detect application installations and prompt for elevation" setting should be configured correctly.

CCE-23117-5
The 'Deny log on as a service' user right should be assigned to the appropriate accounts.

CCE-25316-1
Auditing of "Object Access: Application Generated" events on success should be enabled or disabled as appropriate.

CCE-25490-4
Auditing of 'Detailed Tracking: Process Termination' events on success should be enabled or disabled as appropriate.

CCE-23825-3
Microsoft Software Shadow Copy Provider

CCE-24550-6
The 'Remove computer from docking station' user right should be assigned to the appropriate accounts.

CCE-25271-8
The 'Bypass traverse checking' user right should be assigned to the appropriate accounts.

CCE-23129-0
Auditing of "Object Access: Certification Services" events on failure should be enabled or disabled as appropriate.

CCE-22742-1
The 'Network access: Sharing and security model for local accounts' setting should be configured correctly.

CCE-25305-4
Domain controller: Allow server operators to schedule tasks

CCE-24355-0
Auditing of "Detailed Directory Service Replication" events on success should be enabled or disabled as appropriate.

CCE-24584-5
Auditing of 'Logon-Logoff: IPsec Main Mode' events on failure should be enabled or disabled as appropriate.

CCE-23670-3
Auditing of 'Account Logon: Kerberos Authentication Service' events on failure should be enabled or disabled as appropriate.

CCE-25208-0
The Windows Time service should be enabled or disabled as appropriate.

CCE-25088-6
The 'Audit Credential Validation' setting should be configured correctly.

CCE-25549-7
Auditing of 'Account Logon: Kerberos Service Ticket Operations' events on failure should be enabled or disabled as appropriate.

CCE-25491-2
The Secondary Logon service should be enabled or disabled as appropriate.

CCE-23486-4
Windows Firewall: Private: Inbound connections

CCE-23704-0
The "Interactive logon: Prompt user to change password before expiration" setting should be configured correctly.

CCE-24048-1
The 'Generate security audits' user right should be assigned to the appropriate accounts.

CCE-23353-6
The "Turn Off Access to All Windows Update Feature" setting should be configured correctly.

CCE-24509-2
Auditing of 'Account Logon: Other Account Logon Events' events on failure should be enabled or disabled as appropriate.

CCE-24354-3
The 'Microsoft network server: Digitally sign communications (if client agrees)' setting should be configured correctly.

CCE-24940-9
The "Leave Windows Installer and Group Policy Software Installation Data" machine setting should be configured correctly.

CCE-25228-8
The 'Allow log on locally' user right should be assigned to the appropriate accounts.

CCE-24055-6
Enable screen saver

CCE-24936-7
Windows Firewall: Domain: Outbound connections

CCE-24439-2
The "Network access: Do not allow anonymous enumeration of SAM accounts and shares" setting should be configured correctly.

CCE-24187-7
Auditing of 'Logon-Logoff: Special Logon' events on success should be enabled or disabled as appropriate.

CCE-24901-1
Auditing of "Logon/Logoff: Logoff" events on failure should be enabled or disabled as appropriate.

CCE-24404-6
Auditing of 'Logon-Logoff: IPsec Extended Mode' events on success should be enabled or disabled as appropriate.

CCE-22975-7
The Application Management service should be enabled or disabled as appropriate.

CCE-23666-1
The Smart Card service should be enabled or disabled as appropriate.

CCE-24779-1
The 'Load and unload device drivers' user right should be assigned to the appropriate accounts.

CCE-24470-7
The 'Recovery console: Allow automatic administrative logon' setting should be configured correctly.

CCE-24152-1
Restrict Unauthenticated RPC clients

CCE-25589-3
The 'Accounts: Limit local account use of blank passwords to console logon only' setting should be configured correctly.

CCE-23653-9
The 'User Account Control: Run all administrators in Admin Approval Mode' setting should be configured correctly.

CCE-23630-7
Auditing of "Object Access: Registry" events on failure should be enabled or disabled as appropriate.

CCE-25380-7
The 'Back up files and directories' user right should be assigned to the appropriate accounts.

CCE-24624-9
Windows Firewall: Private: Allow unicast response

CCE-23850-1
The 'Create global objects' user right should be assigned to the appropriate accounts.

CCE-24549-8
The 'Create symbolic links' user right should be assigned to the appropriate accounts.

CCE-25217-1
The "Devices: Allowed to format and eject removable media" setting should be configured correctly.

CCE-25009-2
Internet Connection Sharing (ICS)

CCE-23359-3
The Cryptographic Services service should be enabled or disabled as appropriate.

CCE-25531-5
The 'Network security: Allow LocalSystem NULL session fallback' setting should be configured correctly.

CCE-24969-8
The 'Microsoft network client: Digitally sign communications (always)' setting should be configured correctly.

CCE-24734-6
The 'Force shutdown from a remote system' user right should be assigned to the appropriate accounts.

CCE-25270-0
The 'Enable computer and user accounts to be trusted for delegation' user right should be assigned to the appropriate accounts.

CCE-24264-4
The 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' setting should be configured correctly.

CCE-24494-7
Auditing of 'Logon-Logoff: Other Logon/Logoff Events' events on failure should be enabled or disabled as appropriate.

CCE-24241-2
Screen saver timeout

CCE-25799-8
The startup type of the Windows Management Instrumentation Driver Extensions service should be correct.

CCE-24911-0
The 'Increase scheduling priority' user right should be assigned to the appropriate accounts.

CCE-23829-5
The 'Lock pages in memory' user right should be assigned to the appropriate accounts.

CCE-25358-3
Windows Event Log

CCE-23698-4
The "Require a Password When a Computer Wakes (Plugged In)" machine setting should be configured correctly.

CCE-24810-4
The 'Windows Firewall: Public: Apply local firewall rules' setting should be configured correctly.

CCE-25534-9
The 'Windows Firewall: Domain: Apply local connection security rules' setting should be configured correctly.

CCE-24406-1
The 'Allow log on through Remote Desktop Services' user right should be assigned to the appropriate accounts.

CCE-23456-7
The 'Manage auditing and security log' user right should be assigned to the appropriate accounts.

CCE-23991-3
The startup type of the DHCP Client service should be correct.

CCE-24712-2
The startup type of the Security Accounts Manager service should be correct.

CCE-24968-0
The "MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)" setting should be configured correctly.

CCE-25643-8
The "Interactive logon: Require Domain Controller authentication to unlock workstation" setting should be configured correctly.

CCE-24154-7
The 'Interactive logon: Smart card removal behavior' setting should be configured correctly.

CCE-24868-2
Auditing of "Account Management: Application Group Management" events on failure should be enabled or disabled as appropriate.

CCE-25359-1
Windows Firewall: Domain: Allow unicast response

CCE-23807-1
The 'Network access: Let Everyone permissions apply to anonymous users' setting should be configured correctly.

CCE-25072-0
The startup type of the client-side Domain Name Service cache (aka DNS Client) service should be correct.

CCE-25215-5
The 'Deny log on as a batch job' user right should be assigned to the appropriate accounts.

CCE-25533-1
The 'Modify firmware environment values' user right should be assigned to the appropriate accounts.

CCE-24460-8
The 'Deny log on locally' user right should be assigned to the appropriate accounts.

CCE-24691-8
Auditing of "Privilege Use: Sensitive Privilege Use" events on failure should be enabled or disabled as appropriate.

CCE-23939-2
The 'Create a token object' user right should be assigned to the appropriate accounts.

CCE-24188-5
The 'Deny access to this computer from the network' user right should be assigned to the appropriate accounts.

CCE-24252-9
The "Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings" setting should be configured correctly.

CCE-24740-3
The "Microsoft network client: Digitally sign communications (if server agrees)" setting should be configured correctly.

CCE-24993-8
The "MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)" setting should be configured correctly.

CCE-25466-4
The 'Network access: Named Pipes that can be accessed anonymously' setting should be configured correctly.

CCE-23876-6
Auditing of 'Privilege Use: Non Sensitive Privilege Use' events on success should be enabled or disabled as appropriate.

CCE-23502-8
Auditing of 'Detailed Tracking: RPC Events' events on failure should be enabled or disabled as appropriate.

CCE-25607-3
Windows Firewall: Private: Outbound connections

CCE-25455-7
The 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)' setting should be configured correctly.

CCE-25585-1
The 'Take ownership of files or other objects' user right should be assigned to the appropriate accounts.

CCE-24632-2
The "Change the time zone" user right should be assigned to the appropriate accounts.

CCE-24939-1
The "System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies" setting should be configured properly.

CCE-23820-4
IIS Admin Service

CCE-25202-3
The 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)' setting should be configured correctly.

CCE-25739-4
Auditing of "Account Management: Distribution Group Management" events on failure should be enabled or disabled as appropriate.

CCE-25070-4
The 'Perform volume maintenance tasks' user right should be assigned to the appropriate accounts.

CCE-25093-6
Auditing of 'System: System Integrity' events on failure should be enabled or disabled as appropriate.

CCE-23998-8
The "Require a Password When a Computer Wakes (On Battery)" machine setting should be configured correctly.

CCE-24851-8
The 'Do not process the run once list' setting should be configured correctly.

CCE-23877-4
The 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' setting should be configured correctly.

CCE-24216-4
LPD Service

CCE-25803-8
The 'Interactive logon: Do not require CTRL+ALT+DEL' setting should be configured correctly.

CCE-24927-6
The "MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)" setting should be configured correctly.

CCE-25213-0
Windows Firewall: Domain: Display a notification

CCE-23646-3
Control Event Log behavior when the log file reaches its maximum size

CCE-23010-2
The startup type of the Network Connections service should be correct.

CCE-24490-5
Remote Access Auto Connection Manager

CCE-24863-3
The startup type of the IPSEC (IPsec Policy Agent) service should be correct.

CCE-23610-9
The startup type of the Remote Procedure Call (RPC) Locator service should be correct.

CCE-24633-0
The "System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)" setting should be configured correctly.

CCE-24938-3
The 'Access this computer from the network' user right should be assigned to the appropriate accounts.

CCE-25245-2
The 'Network security: LDAP client signing requirements' setting should be configured correctly.

CCE-23656-2
The 'User Account Control: Switch to the secure desktop when prompting for elevation' setting should be configured correctly.

CCE-25112-4
The 'Adjust memory quotas for a process' user right should be assigned to the appropriate accounts.

CCE-23972-3
The 'Create a pagefile' user right should be assigned to the appropriate accounts.

CCE-23919-4
The "Always install with elevated privileges" machine setting should be configured correctly.

CCE-25487-0
Set the default behavior for AutoRun

CCE-24185-1
The 'Change the system time' user right should be assigned to the appropriate accounts.

CCE-23897-2
The 'Microsoft network server: Amount of idle time required before suspending session' setting should be configured correctly.

CCE-25674-3
Auditing of 'Policy Change: Authentication Policy Change' events on success should be enabled or disabled as appropriate.

CCE-24162-0
The 'Increase a process working set' user right should be assigned to the appropriate accounts.

CCE-23500-2
The 'Shut down the system' user right should be assigned to the appropriate accounts.

CCE-24150-5
The "Network security: Do not store LAN Manager hash value on next password change" setting should be configured correctly.

CCE-25246-0
The startup type of the Remote Procedure Call (RPC) service should be correct.

CCE-23402-1
The Themes service should be enabled or disabled as appropriate.

CCE-23655-4
Auditing of "Object Access: Kernel Object" events on success should be enabled or disabled as appropriate.

CCE-25234-6
The Volume Shadow Copy service should be enabled or disabled as appropriate.

CCE-24645-4
Auditing of 'DS Access: Directory Service Changes' events on success should be enabled or disabled as appropriate.

CCE-23462-5
The "MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)" setting should be configured correctly.

CCE-24598-5
Auditing of "Logon/Logoff: Account Lockout" events on success should be enabled or disabled as appropriate.

CCE-23921-0
The "System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing" setting should be configured correctly.

CCE-24477-2
The 'Impersonate a client after authentication' user right should be assigned to the appropriate accounts.

CCE-24650-4
The 'Network security: LAN Manager authentication level' setting should be configured correctly.

CCE-23846-9
The required permissions for the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\UPnP Device Host should be assigned.

CCE-24839-3
Windows Firewall: Public: Inbound connections

CCE-23955-8
Auditing of 'Account Management: Security Group Management' events on success should be enabled or disabled as appropriate.

CCE-23811-3
The "Set time limit for active Remote Desktop Services sessions" machine setting should be configured correctly.

CCE-24696-7
System Event Notification Service

CCE-24259-4
Auditing of 'Policy Change: MPSSVC Rule-Level Policy Change' events on failure should be enabled or disabled as appropriate.

CCE-24236-2
Auditing of "Object Access: Other Object Access Events" events on failure should be enabled or disabled as appropriate.

CCE-25110-8
The 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' setting should be configured correctly.

CCE-24783-3
The 'Require message integrity' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' setting should be enabled or disabled as appropriate.

CCE-24599-3
Auditing of "Object Access: Handle Manipulation" events on failure should be enabled or disabled as appropriate.

CCE-23968-1
The startup type of the SNMP Trap Service service should be correct.

CCE-25123-1
Auditing of 'Account Management: User Account Management' events on success should be enabled or disabled as appropriate.

CCE-25058-9
The "Netlogon share compatibility" machine setting should be configured correctly.

CCE-25035-7
Auditing of 'Policy Change: Audit Policy Change' events on success should be enabled or disabled as appropriate.

CCE-23386-6
The 'Log on as a batch job' user right should be assigned to the appropriate accounts.

CCE-23615-8
Windows Firewall: Private: Firewall state

CCE-23271-0
Add workstations to domain

CCE-25100-9
The 'Shutdown: Allow system to be shut down without having to log on' setting should be configured correctly.

CCE-25169-4
Auditing of "Policy Change: Other Policy Change Events" events on failure should be enabled or disabled as appropriate.

CCE-24564-7
The 'Network access: Restrict anonymous access to Named Pipes and Shares' setting should be configured correctly.

CCE-25111-6
Windows Firewall: Public: Allow unicast response

CCE-24870-8
The 'System objects: Require case insensitivity for non-Windows subsystems' setting should be configured correctly.

CCE-24148-9
The 'Microsoft network server: Disconnect clients when logon hours expire' setting should be configured correctly.

CCE-25120-7
The "Shutdown: Clear virtual memory pagefile" setting should be configured correctly.

CCE-23295-9
The 'User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop' setting should be configured correctly.

CCE-23988-9
The 'Audit: Shut down system immediately if unable to log security audits' setting should be configured correctly.

CCE-23174-6
The startup type of the TCP/IP NetBIOS Helper service should be correct.

CCE-25350-0
Windows Firewall: Domain: Firewall state

CCE-25011-8
Auditing of 'Detailed Tracking: DPAPI Activity' events on success should be enabled or disabled as appropriate.

CCE-23844-4
The 'Profile single process' user right should be assigned to the appropriate accounts.

CCE-22773-6
The 'Windows Firewall: Public: Apply local connection security rules' setting should be configured correctly.

CCE-25471-4
The "User Account Control: Only elevate UIAccess applications that are installed in secure locations" setting should be configured correctly.

CCE-24663-7
The 'Windows Firewall: Private: Apply local firewall rules' setting should be configured correctly.

CCE-25264-3
The 'Require message integrity' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' setting should be enabled or disabled as appropriate.

CCE-24456-6
Auditing of "Object Access: File System" events on failure should be enabled or disabled as appropriate.

CCE-23614-1
Auditing of 'Logon-Logoff: IPsec Quick Mode' events on success should be enabled or disabled as appropriate.

CCE-25508-3
The 'Network security: Allow Local System to use computer identity for NTLM' setting should be configured correctly.

CCE-23953-3
Auditing of 'DS Access: Directory Service Access' events on success should be enabled or disabled as appropriate.

CCE-24588-6
Auditing of "Account Management: Other Account Management Events" events on failure should be enabled or disabled as appropriate.

CCE-24894-8
The Distributed Link Tracking Client service should be enabled or disabled as appropriate.

CCE-24421-0
Auditing of "Policy Change: Authorization Policy Change" events on failure should be enabled or disabled as appropriate.

CCE-23878-2
The "Turn off Autoplay for non-volume devices" setting should be configured correctly.

CCE-23603-4
The correct service permissions for the Remote Registry service should be assigned.

CCE-23920-2
Auditing of 'Privilege Use: Other Privilege Use Events' events on failure should be enabled or disabled as appropriate.

CCE-24555-5
The 'Replace a process level token' user right should be assigned to the appropriate accounts.

CCE-23482-3
Auditing of 'Account Management: Computer Account Management' events on success should be enabled or disabled as appropriate.

CCE-24907-8
Windows Firewall: Private: Display a notification

CCE-24411-1
Specify the maximum log file size (KB)

CCE-24883-1
The required permissions for the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony should be assigned.

CCE-24774-2
The "Network access: Do not allow anonymous enumeration of SAM accounts and shares" setting should be configured correctly.

CCE-25178-5
Auditing of "System: Security State Change" events on failure should be enabled or disabled as appropriate.

CCE-24751-0
The "Microsoft network client: Send unencrypted password to third-party SMB servers" setting should be configured correctly.

CCE-23723-0
The 'Create permanent shared objects' user right should be assigned to the appropriate accounts.

CCE-25408-6
The "Synchronize directory service data" setting should be configured correctly.

CCE-25518-2
The 'Restore files and directories' user right should be assigned to the appropriate accounts.

CCE-25461-5
Auditing of 'Detailed Tracking: Process Creation' events on success should be enabled or disabled as appropriate.

CCE-23648-9
The 'Debug programs' user right should be assigned to the appropriate accounts.

CCE-24808-8
Windows Firewall: Domain: Inbound connections

CPE    1
cpe:/o:microsoft:windows_server_2012:-
*XCCDF
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_2012
OVAL    224
oval:org.secpod.oval:def:18436
oval:org.secpod.oval:def:18435
oval:org.secpod.oval:def:18433
oval:org.secpod.oval:def:18439
...

© 2013 SecPod Technologies