[Forgot Password]
Login  Register Subscribe

23631

 
 

122599

 
 

98503

 
 

909

 
 

79321

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Disable: 'Enable Protected Event Logging'

ID: oval:org.secpod.oval:def:35121Date: (C)2016-06-10   (M)2017-10-23
Class: COMPLIANCEFamily: windows




This policy setting lets you configure Protected Event Logging. If you enable this policy setting, components that support it will use the certificate you supply to encrypt potentially sensitive event log data before writing it to the event log. Data will be encrypted using the Cryptographic Message Syntax (CMS) standard and the public key you provide. You can use the Unprotect-CmsMessage PowerShell cmdlet to decrypt these encrypted messages, provided that you have access to the private key corresponding to the public key that they were encrypted with. If you disable or do not configure this policy setting, components will not encrypt event log messages before writing them to the event log.

Platform:
Microsoft Windows 10
Reference:
CCE-42506-6
CCE    1
CCE-42506-6
XCCDF    3
xccdf_org.secpod_benchmark_general_Windows_10
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_10
xccdf_org.secpod_benchmark_PCI_3_2_Windows_10

© 2013 SecPod Technologies