[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*


CCE-25187-6
Auditing of "System: Other System Events" events on success should be enabled or disabled as appropriate.

CCE-24639-7
The 'Windows Firewall: Domain: Apply local firewall rules' setting should be configured correctly.

CCE-24680-1
The "Password protect the screen saver" setting should be configured correctly for the default user.

CCE-23587-9
Domain controller: LDAP server signing requirements

CCE-24134-9
The 'User Account Control: Admin Approval Mode for the Built-in Administrator account' setting should be configured correctly.

CCE-23082-1
The "Network access: Do not allow anonymous enumeration of SAM accounts and shares" setting should be configured correctly.

CCE-24243-8
The 'Domain member: Disable machine account password changes' setting should be configured correctly.

CCE-23794-1
The Windows Audio service should be enabled or disabled as appropriate.

CCE-24748-6
The "Interactive logon: Do not display last user name" setting should be configured correctly.

CCE-24387-3
The "Accounts: Guest account status" setting should be configured correctly.

CCE-23880-8
The 'User Account Control: Only elevate executables that are signed and validated' setting should be configured correctly.

CCE-22929-4
Device Install Service

CCE-25198-3
The 'Domain member: Require strong (Windows 2000 or later) session key' setting should be configured correctly.

CCE-24604-1
Distributed Scan Server service

CCE-24812-0
The "Domain member: Digitally sign secure channel data (when possible)" setting should be configured correctly.

CCE-24692-6
Domain controller: Refuse machine account password changes

CCE-24714-8
Auditing of "Object Access: Filtering Platform Connection" events on failure should be enabled or disabled as appropriate.

CCE-24920-1
Device Setup Manager

CCE-22918-7
Auditing of 'Logon-Logoff: Network Policy Server' events on failure should be enabled or disabled as appropriate.

CCE-24847-6
Printer Extensions and Notifications

CCE-25372-4
Auditing of 'System: IPsec Driver' events on success should be enabled or disabled as appropriate.

CCE-24824-5
Auditing of "Object Access: Filtering Platform Packet Drop" events on success should be enabled or disabled as appropriate.

CCE-23619-0
Auditing of 'DS Access: Detailed Directory Service Replication' events on failure should be enabled or disabled as appropriate.

CCE-24954-0
Hyper-V Guest Shutdown Service

CCE-24519-1
The 'User Account Control: Behavior of the elevation prompt for standard users' setting should be configured correctly.

CCE-24035-8
Auditing of 'Object Access: Detailed File Share' events on failure should be enabled or disabled as appropriate.

CCE-24572-0
Specify the maximum log file size (KB)

CCE-24605-8
Microsoft iSCSI Software Target

CCE-24583-7
Control Event Log behavior when the log file reaches its maximum size

CCE-25153-8
The Network Location Awareness (NLA) service should be enabled or disabled as appropriate.

CCE-25429-2
Hyper-V Virtual Machine Management Service

CCE-24000-2
The Distributed Transaction Coordinator service should be enabled or disabled as appropriate.

CCE-25610-7
Remote Desktop Management

CCE-23892-3
Windows Firewall: Public: Outbound connections

CCE-24023-4
Windows Process Activation Service

CCE-24144-8
Microsoft Key Distribution Service

CCE-24231-3
The "User Account Control: Virtualize file and registry write failures to per-user locations" setting should be configured correctly.

CCE-23782-6
Control Event Log behavior when the log file reaches its maximum size

CCE-24462-4
Hyper-V Remote Desktop Virtualization Service

CCE-25078-7
The DHCP Server service should be enabled or disabled as appropriate.

CCE-24738-7
The 'Windows Firewall: Private: Apply local connection security rules' setting should be configured correctly.

CCE-25274-2
The 'Recovery console: Allow floppy copy and access to all drives and all folders' setting should be configured correctly.

CCE-25297-3
The Application Layer Gateway Service should be enabled or disabled as appropriate.

CCE-25043-1
The 'Act as part of the operating system' user right should be assigned to the appropriate accounts.

CCE-24277-6
Specify the maximum log file size (KB)

CCE-25384-9
Windows Event Collector

CCE-24965-6
Auditing of "Policy Change: Filtering Platform Policy Change" events on failure should be enabled or disabled as appropriate.

CCE-25176-9
The "Devices: Prevent users from installing printer drivers" setting should be configured correctly.

CCE-23900-4
Windows Firewall: Public: Display a notification

CCE-25602-4
The "Password must meet complexity requirements" setting should be configured correctly.

CCE-24452-5
The 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' setting should be configured correctly.

CCE-23716-4
The 'Microsoft network server: Digitally sign communications (always)' setting should be configured correctly.

CCE-24682-7
The 'Modify an object label' user right should be assigned to the appropriate accounts.

CCE-25527-3
Auditing of 'System: Security System Extension' events on success should be enabled or disabled as appropriate.

CCE-24498-8
The "User Account Control: Detect application installations and prompt for elevation" setting should be configured correctly.

CCE-23117-5
The 'Deny log on as a service' user right should be assigned to the appropriate accounts.

CCE-24704-9
Spot Verifier

CCE-25316-1
Auditing of "Object Access: Application Generated" events on success should be enabled or disabled as appropriate.

CCE-23825-3
Microsoft Software Shadow Copy Provider

CCE-23848-5
Interactive Services Detection

CCE-25490-4
Auditing of 'Detailed Tracking: Process Termination' events on success should be enabled or disabled as appropriate.

CCE-24550-6
The 'Remove computer from docking station' user right should be assigned to the appropriate accounts.

CCE-24814-6
Remote Desktop Services UserMode Port Redirector

CCE-25426-8
The 'Network access: Remotely accessible registry paths and sub-paths' setting should be configured correctly.

CCE-25271-8
The 'Bypass traverse checking' user right should be assigned to the appropriate accounts.

CCE-23129-0
Auditing of "Object Access: Certification Services" events on failure should be enabled or disabled as appropriate.

CCE-22742-1
The 'Network access: Sharing and security model for local accounts' setting should be configured correctly.

CCE-25305-4
Domain controller: Allow server operators to schedule tasks

CCE-24890-6
Application Host Helper Service

CCE-24355-0
Auditing of "Detailed Directory Service Replication" events on success should be enabled or disabled as appropriate.

CCE-23475-7
Hyper-V Time Synchronization Service

CCE-24026-7
Windows All-User Install Agent

CCE-24584-5
Auditing of 'Logon-Logoff: IPsec Main Mode' events on failure should be enabled or disabled as appropriate.

CCE-24365-9
Smart Card Removal Policy

CCE-23670-3
Auditing of 'Account Logon: Kerberos Authentication Service' events on failure should be enabled or disabled as appropriate.

CCE-25208-0
The Windows Time service should be enabled or disabled as appropriate.

CCE-24683-5
Certificate Propagation

CCE-25088-6
The 'Audit Credential Validation' setting should be configured correctly.

CCE-25317-9
The "Minimum password length" setting should be configured correctly.

CCE-25710-5
Diagnostic System Host

CCE-24952-4
Network List Service

CCE-25491-2
The Secondary Logon service should be enabled or disabled as appropriate.

CCE-25549-7
Auditing of 'Account Logon: Kerberos Service Ticket Operations' events on failure should be enabled or disabled as appropriate.

CCE-23486-4
Windows Firewall: Private: Inbound connections

CCE-25219-7
Active Directory Web Services

CCE-23704-0
The "Interactive logon: Prompt user to change password before expiration" setting should be configured correctly.

CCE-24048-1
The 'Generate security audits' user right should be assigned to the appropriate accounts.

CCE-25722-0
The "Allow Print Spooler to accept client connections" machine setting should be configured correctly.

CCE-23353-6
The "Turn Off Access to All Windows Update Feature" setting should be configured correctly.

CCE-24509-2
Auditing of 'Account Logon: Other Account Logon Events' events on failure should be enabled or disabled as appropriate.

CCE-24354-3
The 'Microsoft network server: Digitally sign communications (if client agrees)' setting should be configured correctly.

CCE-24940-9
The "Leave Windows Installer and Group Policy Software Installation Data" machine setting should be configured correctly.

CCE-24331-1
Application Experience

CCE-25228-8
The 'Allow log on locally' user right should be assigned to the appropriate accounts.

CCE-24055-6
Enable screen saver

CCE-25062-1
The startup type of the Plug and Play service should be correct.

CCE-24032-5
Windows Store Service (WSService)

CCE-23330-4
Remote Access Management service

CCE-24936-7
Windows Firewall: Domain: Outbound connections

CCE-23775-0
Link-Layer Topology Discovery Mapper

CCE-24439-2
The "Network access: Do not allow anonymous enumeration of SAM accounts and shares" setting should be configured correctly.

CCE-24767-6
Virtual Disk

CCE-22865-0
Performance Logs and Alerts

CCE-24043-2
Extensible Authentication Protocol

CCE-25326-0
The WMI Performance Adapter service should be enabled or disabled as appropriate.

CCE-25653-7
IKE and AuthIP IPsec Keying Modules

CCE-24319-6
DS Role Server

CCE-23764-4
The startup type of the Background Intelligent Transfer Service (BITS) service should be correct.

CCE-24187-7
Auditing of 'Logon-Logoff: Special Logon' events on success should be enabled or disabled as appropriate.

CCE-25303-9
Local Session Manager

CCE-24901-1
Auditing of "Logon/Logoff: Logoff" events on failure should be enabled or disabled as appropriate.

CCE-24404-6
Auditing of 'Logon-Logoff: IPsec Extended Mode' events on success should be enabled or disabled as appropriate.

CCE-22975-7
The Application Management service should be enabled or disabled as appropriate.

CCE-23666-1
The Smart Card service should be enabled or disabled as appropriate.

CCE-25401-1
Performance Counter DLL Host

CCE-24779-1
The 'Load and unload device drivers' user right should be assigned to the appropriate accounts.

CCE-25664-4
Net.Tcp Port Sharing Service

CCE-23676-0
Device Association Service

CCE-25184-3
KtmRm for Distributed Transaction Coordinator

CCE-24820-3
Health Key and Certificate Management

CCE-24470-7
The 'Recovery console: Allow automatic administrative logon' setting should be configured correctly.

CCE-25161-1
The "Prevent plaintext PINs from being returned by Credential Manager" machine setting should be configured correctly.

CCE-24843-5
File Server Resource Manager

CCE-24152-1
Restrict Unauthenticated RPC clients

CCE-25589-3
The 'Accounts: Limit local account use of blank passwords to console logon only' setting should be configured correctly.

CCE-24768-4
The 'Account lockout duration' setting should be configured correctly.

CCE-24722-1
The startup type of the File Replication service should be correct.

CCE-23653-9
The 'User Account Control: Run all administrators in Admin Approval Mode' setting should be configured correctly.

CCE-23630-7
Auditing of "Object Access: Registry" events on failure should be enabled or disabled as appropriate.

CCE-24958-1
The Remote Access Connection Manager service should be enabled or disabled as appropriate.

CCE-25380-7
The 'Back up files and directories' user right should be assigned to the appropriate accounts.

CCE-24624-9
Windows Firewall: Private: Allow unicast response

CCE-23971-5
COM+ System Application

CCE-23850-1
The 'Create global objects' user right should be assigned to the appropriate accounts.

CCE-24549-8
The 'Create symbolic links' user right should be assigned to the appropriate accounts.

CCE-25217-1
The "Devices: Allowed to format and eject removable media" setting should be configured correctly.

CCE-25009-2
Internet Connection Sharing (ICS)

CCE-23359-3
The Cryptographic Services service should be enabled or disabled as appropriate.

CCE-25531-5
The 'Network security: Allow LocalSystem NULL session fallback' setting should be configured correctly.

CCE-24969-8
The 'Microsoft network client: Digitally sign communications (always)' setting should be configured correctly.

CCE-24734-6
The 'Force shutdown from a remote system' user right should be assigned to the appropriate accounts.

CCE-25270-0
The 'Enable computer and user accounts to be trusted for delegation' user right should be assigned to the appropriate accounts.

CCE-24494-7
Auditing of 'Logon-Logoff: Other Logon/Logoff Events' events on failure should be enabled or disabled as appropriate.

CCE-24264-4
The 'Interactive logon: Number of previous logons to cache (in case domain controller is not available)' setting should be configured correctly.

CCE-24241-2
Screen saver timeout

CCE-24309-7
DCOM Server Process Launcher

CCE-25799-8
The startup type of the Windows Management Instrumentation Driver Extensions service should be correct.

CCE-23750-3
Microsoft File Server Shadow Copy Agent Service

CCE-24911-0
The 'Increase scheduling priority' user right should be assigned to the appropriate accounts.

CCE-25358-3
Windows Event Log

CCE-23829-5
The 'Lock pages in memory' user right should be assigned to the appropriate accounts.

CCE-24746-0
Remote Access Quarantine Agent

CCE-23698-4
The "Require a Password When a Computer Wakes (Plugged In)" machine setting should be configured correctly.

CCE-23785-9
Auditing of 'Logon-Logoff: Network Policy Server' events on failure should be enabled or disabled as appropriate.

CCE-24810-4
The 'Windows Firewall: Public: Apply local firewall rules' setting should be configured correctly.

CCE-25534-9
The 'Windows Firewall: Domain: Apply local connection security rules' setting should be configured correctly.

CCE-24406-1
The 'Allow log on through Remote Desktop Services' user right should be assigned to the appropriate accounts.

CCE-23991-3
The startup type of the DHCP Client service should be correct.

CCE-24712-2
The startup type of the Security Accounts Manager service should be correct.

CCE-23456-7
The 'Manage auditing and security log' user right should be assigned to the appropriate accounts.

CCE-24968-0
The "MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)" setting should be configured correctly.

CCE-22878-3
Network Store Interface Service

CCE-25643-8
The "Interactive logon: Require Domain Controller authentication to unlock workstation" setting should be configured correctly.

CCE-24845-0
Shell Hardware Detection

CCE-24868-2
Auditing of "Account Management: Application Group Management" events on failure should be enabled or disabled as appropriate.

CCE-24154-7
The 'Interactive logon: Smart card removal behavior' setting should be configured correctly.

CCE-24286-7
Windows Driver Foundation - User-mode Driver Framework

CCE-25359-1
Windows Firewall: Domain: Allow unicast response

CCE-23807-1
The 'Network access: Let Everyone permissions apply to anonymous users' setting should be configured correctly.

CCE-25072-0
The startup type of the client-side Domain Name Service cache (aka DNS Client) service should be correct.

CCE-25302-1
Secure Socket Tunneling Protocol Service

CCE-25215-5
The 'Deny log on as a batch job' user right should be assigned to the appropriate accounts.

CCE-25533-1
The 'Modify firmware environment values' user right should be assigned to the appropriate accounts.

CCE-24460-8
The 'Deny log on locally' user right should be assigned to the appropriate accounts.

CCE-24691-8
Auditing of "Privilege Use: Sensitive Privilege Use" events on failure should be enabled or disabled as appropriate.

CCE-23939-2
The 'Create a token object' user right should be assigned to the appropriate accounts.

CCE-25787-3
IP Helper

CCE-23784-2
Function Discovery Provider Host

CCE-24188-5
The 'Deny access to this computer from the network' user right should be assigned to the appropriate accounts.

CCE-24252-9
The "Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings" setting should be configured correctly.

CCE-24021-8
Special Administration Console Helper

CCE-23149-8
ASP .NET State Service

CCE-23894-9
Windows Firewall: Public: Firewall state

CCE-24349-3
Remote Desktop Configuration

CCE-24740-3
The "Microsoft network client: Digitally sign communications (if server agrees)" setting should be configured correctly.

CCE-24884-9
Hyper-V Data Exchange Service

CCE-24688-4
Resultant Set of Policy Provider

CCE-23888-1
Superfetch

CCE-24993-8
The "MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)" setting should be configured correctly.

CCE-23951-7
The "Store passwords using reversible encryption" setting should be configured correctly.

CCE-23997-0
Windows Color System

CCE-25466-4
The 'Network access: Named Pipes that can be accessed anonymously' setting should be configured correctly.

CCE-25782-4
Background Tasks Infrastructure Service

CCE-23876-6
Auditing of 'Privilege Use: Non Sensitive Privilege Use' events on success should be enabled or disabled as appropriate.

CCE-25029-0
Active Directory Certificate Services

CCE-23899-8
The 'Network access: Remotely accessible registry paths' setting should be configured correctly.

CCE-24809-6
Interactive logon: Machine account lockout threshold

CCE-23502-8
Auditing of 'Detailed Tracking: RPC Events' events on failure should be enabled or disabled as appropriate.

CCE-25607-3
Windows Firewall: Private: Outbound connections

CCE-25455-7
The 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)' setting should be configured correctly.

CCE-25585-1
The 'Take ownership of files or other objects' user right should be assigned to the appropriate accounts.

CCE-24632-2
The "Change the time zone" user right should be assigned to the appropriate accounts.

CCE-24939-1
The "System settings: Use Certificate Rules on Windows Executables for Software Restriction Policies" setting should be configured properly.

CCE-23820-4
IIS Admin Service

CCE-24194-3
Base Filtering Engine

CCE-25202-3
The 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted (3 recommended, 5 is default)' setting should be configured correctly.

CCE-25739-4
Auditing of "Account Management: Distribution Group Management" events on failure should be enabled or disabled as appropriate.

CCE-25334-4
File Server Storage Reports Manager

CCE-25070-4
The 'Perform volume maintenance tasks' user right should be assigned to the appropriate accounts.

CCE-24916-9
Remote Desktop Gateway

CCE-25093-6
Auditing of 'System: System Integrity' events on failure should be enabled or disabled as appropriate.

CCE-23998-8
The "Require a Password When a Computer Wakes (On Battery)" machine setting should be configured correctly.

CCE-24851-8
The 'Do not process the run once list' setting should be configured correctly.

CCE-24424-4
The "Turn on TPM backup to Active Directory Domain Services" machine setting should be configured correctly.

CCE-24216-4
LPD Service

CCE-23877-4
The 'User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode' setting should be configured correctly.

CCE-24927-6
The "MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)" setting should be configured correctly.

CCE-25803-8
The 'Interactive logon: Do not require CTRL+ALT+DEL' setting should be configured correctly.

CCE-25213-0
Windows Firewall: Domain: Display a notification

CCE-23646-3
Control Event Log behavior when the log file reaches its maximum size

CCE-23010-2
The startup type of the Network Connections service should be correct.

CCE-24535-7
The 'Maximum password age' setting should be configured correctly.

CCE-24490-5
Remote Access Auto Connection Manager

CCE-24863-3
The startup type of the IPSEC (IPsec Policy Agent) service should be correct.

CCE-23610-9
The startup type of the Remote Procedure Call (RPC) Locator service should be correct.

CCE-24633-0
The "System objects: Strengthen default permissions of internal system objects (e.g. Symbolic Links)" setting should be configured correctly.

CCE-24938-3
The 'Access this computer from the network' user right should be assigned to the appropriate accounts.

CCE-24414-5
The "Domain member: Digitally encrypt secure channel data (when possible)" setting should be configured correctly.

CCE-24840-1
The 'Reset account lockout counter after' setting should be configured correctly.

CCE-24174-5
The "Outline files" PowerPoint setting should be configured correctly.

CCE-25245-2
The 'Network security: LDAP client signing requirements' setting should be configured correctly.

CCE-25124-9
Optimize drives

CCE-23656-2
The 'User Account Control: Switch to the secure desktop when prompting for elevation' setting should be configured correctly.

CCE-25112-4
The 'Adjust memory quotas for a process' user right should be assigned to the appropriate accounts.

CCE-23972-3
The 'Create a pagefile' user right should be assigned to the appropriate accounts.

CCE-24546-4
Hyper-V Volume Shadow Copy Requestor

CCE-24644-7
The "Enforce password history" setting should be configured correctly.

CCE-23919-4
The "Always install with elevated privileges" machine setting should be configured correctly.

CCE-24852-6
Windows Modules Installer

CCE-25004-3
Windows Font Cache Service

CCE-24185-1
The 'Change the system time' user right should be assigned to the appropriate accounts.

CCE-25487-0
Set the default behavior for AutoRun

CCE-25530-7
Portable Device Enumerator Service

CCE-23897-2
The 'Microsoft network server: Amount of idle time required before suspending session' setting should be configured correctly.

CCE-25674-3
Auditing of 'Policy Change: Authentication Policy Change' events on success should be enabled or disabled as appropriate.

CCE-25158-7
Diagnostic Service Host

CCE-24162-0
The 'Increase a process working set' user right should be assigned to the appropriate accounts.

CCE-23500-2
The 'Shut down the system' user right should be assigned to the appropriate accounts.

CCE-24415-2
The Human Interface Device Access service should be enabled or disabled as appropriate.

CCE-24150-5
The "Network security: Do not store LAN Manager hash value on next password change" setting should be configured correctly.

CCE-25246-0
The startup type of the Remote Procedure Call (RPC) service should be correct.

CCE-24668-6
The correct service permissions for the Task Scheduler service should be assigned.

CCE-24173-7
The Windows Firewall "Allow ICMP exceptions" policy should be enabled or disabled as appropriate for the Standard Profile.

CCE-25564-6
The startup type of the COM+ Event System service should be correct.

CCE-25148-8
Windows Error Reporting Service

CCE-24743-7
The startup type of the Workstation service should be correct.

CCE-23402-1
The Themes service should be enabled or disabled as appropriate.

CCE-23655-4
Auditing of "Object Access: Kernel Object" events on success should be enabled or disabled as appropriate.

CCE-24316-2
Application Identity

CCE-25234-6
The Volume Shadow Copy service should be enabled or disabled as appropriate.

CCE-24645-4
Auditing of 'DS Access: Directory Service Changes' events on success should be enabled or disabled as appropriate.

CCE-25609-9
Group Policy Client

CCE-23122-5
The Diagnostic Policy Service (DPS) "Configure Scenario Execution Level" machine setting should be configured correctly for Windows Memory Leak Diagnosis.

CCE-23742-0
The startup type of the Intersite Messaging service should be correct.

CCE-25598-4
DFS Namespace

CCE-23462-5
The "MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)" setting should be configured correctly.

CCE-23921-0
The "System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing" setting should be configured correctly.

CCE-24598-5
Auditing of "Logon/Logoff: Account Lockout" events on success should be enabled or disabled as appropriate.

CCE-24477-2
The 'Impersonate a client after authentication' user right should be assigned to the appropriate accounts.

CCE-24650-4
The 'Network security: LAN Manager authentication level' setting should be configured correctly.

CCE-23846-9
The required permissions for the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\UPnP Device Host should be assigned.

CCE-24322-0
DNS Server

CCE-24839-3
Windows Firewall: Public: Inbound connections

CCE-23473-2
Computer Browser ResetBrowser Frames should be properly configured.

CCE-24794-0
User Profile Service

CCE-24563-9
Data Deduplication Volume Shadow Copy Service

CCE-23955-8
Auditing of 'Account Management: Security Group Management' events on success should be enabled or disabled as appropriate.

CCE-24465-7
The 'Domain member: Digitally encrypt or sign secure channel data (always)' setting should be configured correctly.

CCE-23811-3
The "Set time limit for active Remote Desktop Services sessions" machine setting should be configured correctly.

CCE-23352-8
Network Connectivity Assistant

CCE-24696-7
System Event Notification Service

CCE-24259-4
Auditing of 'Policy Change: MPSSVC Rule-Level Policy Change' events on failure should be enabled or disabled as appropriate.

CCE-24236-2
Auditing of "Object Access: Other Object Access Events" events on failure should be enabled or disabled as appropriate.

CCE-24909-4
Network Access Protection Agent

CCE-25110-8
The 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' setting should be configured correctly.

CCE-24311-3
CNG Key Isolation

CCE-24783-3
The 'Require message integrity' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) clients' setting should be enabled or disabled as appropriate.

CCE-25603-2
Encrypting File System (EFS)

CCE-24599-3
Auditing of "Object Access: Handle Manipulation" events on failure should be enabled or disabled as appropriate.

CCE-23968-1
The startup type of the SNMP Trap Service service should be correct.

CCE-24039-0
The startup type of the Routing and Remote Access service should be correct.

CCE-25123-1
Auditing of 'Account Management: User Account Management' events on success should be enabled or disabled as appropriate.

CCE-25058-9
The "Netlogon share compatibility" machine setting should be configured correctly.

CCE-25035-7
Auditing of 'Policy Change: Audit Policy Change' events on success should be enabled or disabled as appropriate.

CCE-23386-6
The 'Log on as a batch job' user right should be assigned to the appropriate accounts.

CCE-23408-8
DFS Replication

CCE-24662-9
Software Protection

CCE-23615-8
Windows Firewall: Private: Firewall state

CCE-23271-0
Add workstations to domain

CCE-25100-9
The 'Shutdown: Allow system to be shut down without having to log on' setting should be configured correctly.

CCE-23484-9
Problem Reports and Solutions Control Panel Support

CCE-23294-2
The startup type of the Kerberos Key Distribution Center service should be correct.

CCE-25169-4
Auditing of "Policy Change: Other Policy Change Events" events on failure should be enabled or disabled as appropriate.

CCE-23517-6
Online Responder Service

CCE-23702-4
Windows Audio Endpoint Builder

CCE-24564-7
The 'Network access: Restrict anonymous access to Named Pipes and Shares' setting should be configured correctly.

CCE-25111-6
Windows Firewall: Public: Allow unicast response

CCE-24080-4
Web Management Service

CCE-24870-8
The 'System objects: Require case insensitivity for non-Windows subsystems' setting should be configured correctly.

CCE-24148-9
The 'Microsoft network server: Disconnect clients when logon hours expire' setting should be configured correctly.

CCE-24489-7
RemoteApp and Desktop Connection Management

CCE-25463-1
Hyper-V Heartbeat Service

CCE-24443-4
The "RPC Endpoint Mapper Client Authentication" machine setting should be configured correctly.

CCE-24258-6
World Wide Web Publishing Service

CCE-24379-0
The startup type of the SSDP Discovery service should be correct.

CCE-25120-7
The "Shutdown: Clear virtual memory pagefile" setting should be configured correctly.

CCE-23758-6
Remote Desktop Connection Broker

CCE-23295-9
The 'User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop' setting should be configured correctly.

CCE-23988-9
The 'Audit: Shut down system immediately if unable to log security audits' setting should be configured correctly.

CCE-24095-2
Data Deduplication Service

CCE-23174-6
The startup type of the TCP/IP NetBIOS Helper service should be correct.

CCE-25350-0
Windows Firewall: Domain: Firewall state

CCE-25011-8
Auditing of 'Detailed Tracking: DPAPI Activity' events on success should be enabled or disabled as appropriate.

CCE-22773-6
The 'Windows Firewall: Public: Apply local connection security rules' setting should be configured correctly.

CCE-23844-4
The 'Profile single process' user right should be assigned to the appropriate accounts.

CCE-25471-4
The "User Account Control: Only elevate UIAccess applications that are installed in secure locations" setting should be configured correctly.

CCE-24663-7
The 'Windows Firewall: Private: Apply local firewall rules' setting should be configured correctly.

CCE-23821-2
Thread Ordering Server

CCE-25264-3
The 'Require message integrity' option for the 'Network security: Minimum session security for NTLM SSP based (including secure RPC) servers' setting should be enabled or disabled as appropriate.

CCE-24456-6
Auditing of "Object Access: File System" events on failure should be enabled or disabled as appropriate.

CCE-25508-3
The 'Network security: Allow Local System to use computer identity for NTLM' setting should be configured correctly.

CCE-23614-1
Auditing of 'Logon-Logoff: IPsec Quick Mode' events on success should be enabled or disabled as appropriate.

CCE-23953-3
Auditing of 'DS Access: Directory Service Access' events on success should be enabled or disabled as appropriate.

CCE-23976-4
Windows Internal Database VSS Writer

CCE-24313-9
Function Discovery Resource Publication

CCE-24588-6
Auditing of "Account Management: Other Account Management Events" events on failure should be enabled or disabled as appropriate.

CCE-24894-8
The Distributed Link Tracking Client service should be enabled or disabled as appropriate.

CCE-25407-8
User Access Logging Service

CCE-24421-0
Auditing of "Policy Change: Authorization Policy Change" events on failure should be enabled or disabled as appropriate.

CCE-24698-3
Windows Internal Database

CCE-23418-7
Wired AutoConfig

CCE-23878-2
The "Turn off Autoplay for non-volume devices" setting should be configured correctly.

CCE-23855-0
KDC Proxy Server service (KPS)

CCE-23603-4
The correct service permissions for the Remote Registry service should be assigned.

CCE-23920-2
Auditing of 'Privilege Use: Other Privilege Use Events' events on failure should be enabled or disabled as appropriate.

CCE-24555-5
The 'Replace a process level token' user right should be assigned to the appropriate accounts.

CCE-23482-3
Auditing of 'Account Management: Computer Account Management' events on success should be enabled or disabled as appropriate.

CCE-24907-8
Windows Firewall: Private: Display a notification

CCE-23734-7
Windows Remote Management (WS-Management)

CCE-24411-1
Specify the maximum log file size (KB)

CCE-24883-1
The required permissions for the registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Telephony should be assigned.

CCE-24457-4
Microsoft iSCSI Initiator Service

CCE-23580-4
webclient

CCE-25714-7
WinHTTP Web Proxy Auto-Discovery Service

CCE-23043-3
Interactive logon: Machine inactivity limit

CCE-24785-8
Application Information

CCE-25144-7
Multimedia Class Scheduler

CCE-24018-4
The 'Minimum password age' setting should be configured correctly.

CCE-25178-5
Auditing of "System: Security State Change" events on failure should be enabled or disabled as appropriate.

CCE-24774-2
The "Network access: Do not allow anonymous enumeration of SAM accounts and shares" setting should be configured correctly.

CCE-24751-0
The "Microsoft network client: Send unencrypted password to third-party SMB servers" setting should be configured correctly.

CCE-23723-0
The 'Create permanent shared objects' user right should be assigned to the appropriate accounts.

CCE-25408-6
The "Synchronize directory service data" setting should be configured correctly.

CCE-25518-2
The 'Restore files and directories' user right should be assigned to the appropriate accounts.

CCE-25461-5
Auditing of 'Detailed Tracking: Process Creation' events on success should be enabled or disabled as appropriate.

CCE-23648-9
The 'Debug programs' user right should be assigned to the appropriate accounts.

CCE-24808-8
Windows Firewall: Domain: Inbound connections

CPE    1
cpe:/o:microsoft:windows_server_2012:-
*XCCDF
xccdf_org.secpod_benchmark_general_Windows_2012
OVAL    367
oval:org.secpod.oval:def:18315
oval:org.secpod.oval:def:18436
oval:org.secpod.oval:def:18314
oval:org.secpod.oval:def:18435
...

© 2013 SecPod Technologies