CIS Windows Server 2012 MS L1 v2.2.0

Audit Details

Name: CIS Windows Server 2012 MS L1 v2.2.0

Updated: 4/25/2022

Authority: CIS

Plugin: Windows

Revision: 1.8

Estimated Item Count: 323

File Details

Filename: CIS_MS_SERVER_2012_Level_1_v2.2.0.audit

Size: 813 kB

MD5: 907499f0d90fd02e267609c3905ca227
SHA256: 8530ed688f55e4d8b5c8a1805a3c4b404f219e414129ee678dc4a436ea90e0d0

Audit Changelog

 
Revision 1.8

Apr 25, 2022

Functional Update
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Revision 1.7

Mar 29, 2022

Functional Update
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.6

Dec 3, 2021

Functional Update
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Miscellaneous
  • Platform check updated.
Revision 1.5

Oct 29, 2021

Functional Update
  • 19.1.3.1 Ensure 'Enable screen saver' is set to 'Enabled'
  • 19.1.3.2 Ensure 'Force specific screen saver: Screen saver executable name' is set to 'Enabled: scrnsave.scr'
  • 19.1.3.3 Ensure 'Password protect the screen saver' is set to 'Enabled'
  • 19.1.3.4 Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'
  • 19.5.1.1 Ensure 'Turn off toast notifications on the lock screen' is set to 'Enabled'
  • 19.7.26.1 Ensure 'Prevent users from sharing files within their profile.' is set to 'Enabled'
  • 19.7.4.1 Ensure 'Do not preserve zone information in file attachments' is set to 'Disabled'
  • 19.7.4.2 Ensure 'Notify antivirus programs when opening attachments' is set to 'Enabled'
  • 19.7.41.1 Ensure 'Always install with elevated privileges' is set to 'Disabled'
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Miscellaneous
  • Platform check updated.
  • References updated.
Added
  • CIS_MS_SERVER_2012_Level_1_v2.2.0.audit from CIS Security Benchmark For Microsoft Windows Server 2012 MS Level 1
Removed
  • CIS Security Benchmark For Microsoft Windows Server 2012 MS Level 1
Revision 1.4

Jun 17, 2021

Functional Update
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.3

Mar 2, 2021

Functional Update
  • 2.2.18 Ensure 'Create symbolic links' is set to 'Administrators, NT VIRTUAL MACHINE\Virtual Machines' (MS only)
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.2

Nov 17, 2020

Functional Update
  • 2.2.21 Ensure 'Deny access to this computer from the network' to include 'Guests, Local account and member of Administrators group' (MS only)
  • 2.2.22 Ensure 'Deny log on as a batch job' to include 'Guests'
  • 2.2.23 Ensure 'Deny log on as a service' to include 'Guests'
  • 2.2.24 Ensure 'Deny log on locally' to include 'Guests'
  • 2.2.26 Ensure 'Deny log on through Remote Desktop Services' is set to 'Guests, Local account' (MS only)
  • 2.2.43 Ensure 'Profile system performance' is set to 'Administrators, NT SERVICE\WdiServiceHost'
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Revision 1.1

Sep 29, 2020

Functional Update
  • 2.3.10.9 Configure 'Network access: Remotely accessible registry paths and sub-paths'
Miscellaneous
  • References updated.