[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Allow indexing of encrypted files

ID: oval:org.secpod.oval:def:40333Date: (C)2017-04-25   (M)2023-07-04
Class: COMPLIANCEFamily: windows




This policy setting allows encrypted items to be indexed. If you enable this policy setting, indexing will attempt to decrypt and index the content (access restrictions will still apply). If you disable this policy setting, the search service components (including non-Microsoft components) are expected not to index encrypted items or encrypted stores. This policy setting is not configured by default. If you do not configure this policy setting, the local setting, configured through Control Panel, will be used. By default, the Control Panel setting is set to not index encrypted content. When this setting is enabled or disabled, the index is rebuilt completely. Full volume encryption (such as BitLocker Drive Encryption or a non-Microsoft solution) must be used for the location of the index to maintain security for encrypted files. Vulnerability: Enabling or not configuring this setting can compromise security as it allows indexing to attempt to decrypt and index a device's content which may expose confidential and secure data. Counter Measure: Disable this setting. Potential Impact: The search service components will not index encrypted items or encrypted stores. Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Search\Allow indexing of encrypted files (2) REG: HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search!AllowIndexingEncryptedStoresOrItems

Platform:
Microsoft Windows Server 2016
Reference:
CCE-45005-6
CPE    1
cpe:/o:microsoft:windows_server_2016:::x64
CCE    1
CCE-45005-6
XCCDF    1
xccdf_org.secpod_benchmark_general_Windows_Server_2016

© SecPod Technologies