Aug 3, 2022 Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
|
Jun 13, 2022 Functional Update- 18.4.13 Ensure 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' is set to 'Enabled: 90% or less'
- 2.3.10.7 Ensure 'Network access: Remotely accessible registry paths'
- 2.3.9.1 Ensure 'Microsoft network server: Amount of idle time required before suspending session' is set to '15 or fewer minute(s)'
- 2.3.9.5 Ensure 'Microsoft network server: Server SPN target name validation level' is set to 'Accept if provided by client' or higher
|
Apr 25, 2022 Functional Update- 17.5.3 Ensure 'Audit Logoff' is set to include 'Success'
|
Mar 29, 2022 Miscellaneous- Metadata updated.
- References updated.
|
Oct 29, 2021 Functional Update- 19.1.3.1 Ensure 'Enable screen saver' is set to 'Enabled'
- 19.1.3.2 Ensure 'Password protect the screen saver' is set to 'Enabled'
- 19.1.3.3 Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'
- 19.5.1.1 Ensure 'Turn off toast notifications on the lock screen' is set to 'Enabled'
- 19.7.27.1 Ensure 'Prevent users from sharing files within their profile.' is set to 'Enabled'
- 19.7.4.1 Ensure 'Do not preserve zone information in file attachments' is set to 'Disabled'
- 19.7.4.2 Ensure 'Notify antivirus programs when opening attachments' is set to 'Enabled'
- 19.7.42.1 Ensure 'Always install with elevated privileges' is set to 'Disabled'
- 19.7.8.1 Ensure 'Configure Windows spotlight on lock screen' is set to Disabled'
- 19.7.8.2 Ensure 'Do not suggest third-party content in Windows spotlight' is set to 'Enabled'
|
Jun 17, 2021 Miscellaneous- Metadata updated.
- References updated.
|
Feb 26, 2021 Functional Update- 18.4.10 Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)' is set to 'Enabled: 5 or fewer seconds'
Miscellaneous- Metadata updated.
- Platform check updated.
- References updated.
|
Nov 17, 2020 Functional Update- 2.2.16 Ensure 'Deny access to this computer from the network' to include 'Guests, Local account'
- 2.2.17 Ensure 'Deny log on as a batch job' to include 'Guests'
- 2.2.18 Ensure 'Deny log on as a service' to include 'Guests'
- 2.2.19 Ensure 'Deny log on locally' to include 'Guests'
- 2.2.20 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests, Local account'
|
