Detections
Analytics

CIS Microsoft Windows 10 Enterprise v4.0.0 NG

Audit Details

Name: CIS Microsoft Windows 10 Enterprise v4.0.0 NG

Updated: 6/11/2025

Authority: CIS

Plugin: Windows

Revision: 1.0

Estimated Item Count: 14

File Details

Filename: CIS_Microsoft_Windows_10_Enterprise_v4.0.0_NG.audit

Size: 44.9 kB

MD5: a3be02bcf20c1da0137df63eb59d3457
SHA256: 396408391757ed9ca06adc5f0c20ff5d85ab9aa76b6ce374af7e6bbc37149bb6

Audit Items

DescriptionCategories
18.9.5.1 (NG) Ensure 'Turn On Virtualization Based Security' is set to 'Enabled'

SYSTEM AND INFORMATION INTEGRITY

18.9.5.2 (NG) Ensure 'Turn On Virtualization Based Security: Select Platform Security Level' is set to 'Secure Boot' or higher

SYSTEM AND INFORMATION INTEGRITY

18.9.5.3 (NG) Ensure 'Turn On Virtualization Based Security: Virtualization Based Protection of Code Integrity' is set to 'Enabled with UEFI lock'

SYSTEM AND INFORMATION INTEGRITY

18.9.5.4 (NG) Ensure 'Turn On Virtualization Based Security: Require UEFI Memory Attributes Table' is set to 'True (checked)'

SYSTEM AND INFORMATION INTEGRITY

18.9.5.5 (NG) Ensure 'Turn On Virtualization Based Security: Credential Guard Configuration' is set to 'Enabled with UEFI lock'

SYSTEM AND INFORMATION INTEGRITY

18.9.5.6 (NG) Ensure 'Turn On Virtualization Based Security: Secure Launch Configuration' is set to 'Enabled'

SYSTEM AND INFORMATION INTEGRITY

18.9.26.2 (NG) Ensure 'Configures LSASS to run as a protected process' is set to 'Enabled: Enabled with UEFI Lock'

SYSTEM AND INFORMATION INTEGRITY

18.10.44.1 (NG) Ensure 'Allow auditing events in Microsoft Defender Application Guard' is set to 'Enabled'

AUDIT AND ACCOUNTABILITY

18.10.44.2 (NG) Ensure 'Allow camera and microphone access in Microsoft Defender Application Guard' is set to 'Disabled'

CONFIGURATION MANAGEMENT

18.10.44.3 (NG) Ensure 'Allow data persistence for Microsoft Defender Application Guard' is set to 'Disabled'

CONFIGURATION MANAGEMENT

18.10.44.4 (NG) Ensure 'Allow files to download and save to the host operating system from Microsoft Defender Application Guard' is set to 'Disabled'

CONFIGURATION MANAGEMENT

18.10.44.5 (NG) Ensure 'Configure Microsoft Defender Application Guard clipboard settings: Clipboard behavior setting' is set to 'Enabled: Enable clipboard operation from an isolated session to the host'

CONFIGURATION MANAGEMENT

18.10.44.6 (NG) Ensure 'Turn on Microsoft Defender Application Guard in Managed Mode' is set to 'Enabled: 1'

SYSTEM AND INFORMATION INTEGRITY

CIS_Microsoft_Windows_10_Enterprise_v4.0.0_NG.audit from CIS Microsoft Windows 10 Enterprise Benchmark v4.0.0