1.1.1.1 Set 'Account lockout threshold' to '5 invalid logon attempt(s)' | ACCESS CONTROL |
1.1.1.2 Set 'Account lockout duration' to '15 or more minute(s)' | ACCESS CONTROL |
1.1.1.3 Set 'Reset account lockout counter after' to '15 minute(s)' | ACCESS CONTROL |
1.1.1.4 Set 'Minimum password length' to '14 or more character(s)' | IDENTIFICATION AND AUTHENTICATION |
1.1.1.5 Set 'Enforce password history' to '24 or more password(s)' | IDENTIFICATION AND AUTHENTICATION |
1.1.1.6 Set 'Password must meet complexity requirements' to 'Enabled' | IDENTIFICATION AND AUTHENTICATION |
1.1.1.7 Set 'Store passwords using reversible encryption' to 'Disabled' | IDENTIFICATION AND AUTHENTICATION |
1.1.1.8 Set 'Minimum password age' to '1 or more day(s)' | IDENTIFICATION AND AUTHENTICATION |
1.1.1.9 Set 'Maximum password age' to '60 or fewer days' | IDENTIFICATION AND AUTHENTICATION |
1.1.2.1 Set 'Audit Policy: Privilege Use: Sensitive Privilege Use' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.2 Set 'Audit Policy: Account Management: Other Account Management Events' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.3 Set 'Audit Policy: Logon-Logoff: IPsec Quick Mode' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.4 Set 'Audit Policy: Detailed Tracking: RPC Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.5 Set 'Audit Policy: DS Access: Directory Service Access' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.6 Set 'Audit Policy: Policy Change: MPSSVC Rule-Level Policy Change' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.7 Set 'Audit Policy: Account Management: Distribution Group Management' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.8 Set 'Audit Policy: Detailed Tracking: Process Termination' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.9 Set 'Audit Policy: Object Access: Detailed File Share' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.10 Set 'Audit Policy: Account Management: User Account Management' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.11 Set 'Audit Policy: Account Management: Computer Account Management' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.12 Set 'Audit Policy: System: Security System Extension' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.13 Set 'Audit Policy: System: Security State Change' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.14 Set 'Audit Policy: Logon-Logoff: Network Policy Server' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.15 Set 'Audit Policy: Detailed Tracking: DPAPI Activity' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.16 Set 'Audit Policy: System: IPsec Driver' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.17 Set 'Audit Policy: Account Management: Security Group Management' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.18 Set 'Audit Policy: Account Logon: Other Account Logon Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.19 Set 'Audit Policy: Object Access: Registry' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.20 Set 'Audit Policy: Privilege Use: Other Privilege Use Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.21 Set 'Audit Policy: Policy Change: Filtering Platform Policy Change' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.22 Set 'Audit Policy: Object Access: Central Access Policy Staging' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.23 Set 'Audit Policy: Policy Change: Authorization Policy Change' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.24 Set 'Audit Policy: Account Logon: Kerberos Authentication Service' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.25 Set 'Audit Policy: Logon-Logoff: Logoff' to 'Success' | AUDIT AND ACCOUNTABILITY |
1.1.2.26 Set 'Audit Policy: Account Management: Application Group Management' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.27 Set 'Audit Policy: DS Access: Directory Service Changes' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.28 Set 'Audit Policy: Object Access: Kernel Object' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.29 Set 'Audit Policy: Policy Change: Other Policy Change Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.30 Set 'Audit Policy: Object Access: Application Generated' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.31 Set 'Audit Policy: Logon-Logoff: Account Lockout' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.32 Set 'Audit Policy: Policy Change: Audit Policy Change' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.33 Set 'Audit Policy: Object Access: File Share' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.34 Set 'Audit Policy: System: System Integrity' to 'Success and Failure' | AUDIT AND ACCOUNTABILITY |
1.1.2.35 Set 'Audit Policy: System: Other System Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.36 Set 'Audit Policy: Logon-Logoff: Other Logon/Logoff Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.37 Set 'Audit Policy: DS Access: Directory Service Replication' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.38 Set 'Audit Policy: Object Access: Filtering Platform Packet Drop' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.39 Set 'Audit Policy: DS Access: Detailed Directory Service Replication' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.40 Set 'Audit Policy: Object Access: Other Object Access Events' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |
1.1.2.41 Set 'Audit Policy: Object Access: Filtering Platform Connection' to 'No Auditing' | AUDIT AND ACCOUNTABILITY |