CIS Windows 8 L1 v1.0.0

Audit Details

Name: CIS Windows 8 L1 v1.0.0

Updated: 4/25/2022

Authority: CIS

Plugin: Windows

Revision: 1.52

Estimated Item Count: 404

File Details

Filename: CIS_MS_Windows_8_Level_1_v1.0.0.audit

Size: 406 kB

MD5: 284eadda0d67e08dc19911beba965ea3
SHA256: 4ee6ac73497341115a2a07f506bdae3b794452ea02a354272d279e380a2bf2f6

Audit Items

DescriptionCategories
1.1.1.1 Set 'Account lockout threshold' to '5 invalid logon attempt(s)'

ACCESS CONTROL

1.1.1.2 Set 'Account lockout duration' to '15 or more minute(s)'

ACCESS CONTROL

1.1.1.3 Set 'Reset account lockout counter after' to '15 minute(s)'

ACCESS CONTROL

1.1.1.4 Set 'Minimum password length' to '14 or more character(s)'

IDENTIFICATION AND AUTHENTICATION

1.1.1.5 Set 'Enforce password history' to '24 or more password(s)'

IDENTIFICATION AND AUTHENTICATION

1.1.1.6 Set 'Password must meet complexity requirements' to 'Enabled'

IDENTIFICATION AND AUTHENTICATION

1.1.1.7 Set 'Store passwords using reversible encryption' to 'Disabled'

IDENTIFICATION AND AUTHENTICATION

1.1.1.8 Set 'Minimum password age' to '1 or more day(s)'

IDENTIFICATION AND AUTHENTICATION

1.1.1.9 Set 'Maximum password age' to '60 or fewer days'

IDENTIFICATION AND AUTHENTICATION

1.1.2.1 Set 'Audit Policy: Privilege Use: Sensitive Privilege Use' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.2 Set 'Audit Policy: Account Management: Other Account Management Events' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.3 Set 'Audit Policy: Logon-Logoff: IPsec Quick Mode' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.4 Set 'Audit Policy: Detailed Tracking: RPC Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.5 Set 'Audit Policy: DS Access: Directory Service Access' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.6 Set 'Audit Policy: Policy Change: MPSSVC Rule-Level Policy Change' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.7 Set 'Audit Policy: Account Management: Distribution Group Management' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.8 Set 'Audit Policy: Detailed Tracking: Process Termination' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.9 Set 'Audit Policy: Object Access: Detailed File Share' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.10 Set 'Audit Policy: Account Management: User Account Management' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.11 Set 'Audit Policy: Account Management: Computer Account Management' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.12 Set 'Audit Policy: System: Security System Extension' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.13 Set 'Audit Policy: System: Security State Change' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.14 Set 'Audit Policy: Logon-Logoff: Network Policy Server' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.15 Set 'Audit Policy: Detailed Tracking: DPAPI Activity' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.16 Set 'Audit Policy: System: IPsec Driver' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.17 Set 'Audit Policy: Account Management: Security Group Management' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.18 Set 'Audit Policy: Account Logon: Other Account Logon Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.19 Set 'Audit Policy: Object Access: Registry' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.20 Set 'Audit Policy: Privilege Use: Other Privilege Use Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.21 Set 'Audit Policy: Policy Change: Filtering Platform Policy Change' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.22 Set 'Audit Policy: Object Access: Central Access Policy Staging' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.23 Set 'Audit Policy: Policy Change: Authorization Policy Change' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.24 Set 'Audit Policy: Account Logon: Kerberos Authentication Service' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.25 Set 'Audit Policy: Logon-Logoff: Logoff' to 'Success'

AUDIT AND ACCOUNTABILITY

1.1.2.26 Set 'Audit Policy: Account Management: Application Group Management' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.27 Set 'Audit Policy: DS Access: Directory Service Changes' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.28 Set 'Audit Policy: Object Access: Kernel Object' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.29 Set 'Audit Policy: Policy Change: Other Policy Change Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.30 Set 'Audit Policy: Object Access: Application Generated' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.31 Set 'Audit Policy: Logon-Logoff: Account Lockout' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.32 Set 'Audit Policy: Policy Change: Audit Policy Change' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.33 Set 'Audit Policy: Object Access: File Share' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.34 Set 'Audit Policy: System: System Integrity' to 'Success and Failure'

AUDIT AND ACCOUNTABILITY

1.1.2.35 Set 'Audit Policy: System: Other System Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.36 Set 'Audit Policy: Logon-Logoff: Other Logon/Logoff Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.37 Set 'Audit Policy: DS Access: Directory Service Replication' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.38 Set 'Audit Policy: Object Access: Filtering Platform Packet Drop' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.39 Set 'Audit Policy: DS Access: Detailed Directory Service Replication' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.40 Set 'Audit Policy: Object Access: Other Object Access Events' to 'No Auditing'

AUDIT AND ACCOUNTABILITY

1.1.2.41 Set 'Audit Policy: Object Access: Filtering Platform Connection' to 'No Auditing'

AUDIT AND ACCOUNTABILITY