CIS Microsoft Windows Server 2022 v1.0.0 L1 DC

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Microsoft Windows Server 2022 v1.0.0 L1 DC

Updated: 6/13/2023

Authority: CIS

Plugin: Windows

Revision: 1.10

Estimated Item Count: 321

File Details

Filename: CIS_Microsoft_Windows_Server_2022_Benchmark_v1.0.0_L1_DC.audit

Size: 736 kB

MD5: ad6b287454466a552c4328bd6a9c5600
SHA256: 835fd069cd205c9e8db8713095db8c64c3b4781228f6f9072e0562d837318950

Audit Changelog

 
Revision 1.10

Jun 13, 2023

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.9

Apr 12, 2023

Functional Update
  • 1.1.1 Ensure 'Enforce password history' is set to '24 or more password(s)'
  • 1.1.2 Ensure 'Maximum password age' is set to '365 or fewer days, but not 0'
  • 1.1.3 Ensure 'Minimum password age' is set to '1 or more day(s)'
  • 1.1.4 Ensure 'Minimum password length' is set to '14 or more character(s)'
Miscellaneous
  • Metadata updated.
  • Platform check updated.
  • Variables updated.
Revision 1.8

Mar 21, 2023

Functional Update
  • 2.3.5.2 Ensure 'Domain controller: Allow vulnerable Netlogon secure channel connections' is set to 'Not Configured' (DC Only)
Revision 1.7

Mar 8, 2023

Functional Update
  • 2.3.11.7 Ensure 'Network security: LAN Manager authentication level' is set to 'Send NTLMv2 response only. Refuse LM & NTLM'
Revision 1.6

Mar 7, 2023

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.5

Jan 4, 2023

Miscellaneous
  • Metadata updated.
Revision 1.4

Dec 7, 2022

Miscellaneous
  • Variables updated.
Revision 1.3

Sep 30, 2022

Functional Update
  • 19.7.8.5 Ensure 'Turn off Spotlight collection on Desktop' is set to 'Enabled'
Miscellaneous
  • References updated.
Revision 1.2

Jul 7, 2022

Functional Update
  • 18.5.4.1 Ensure 'Configure DNS over HTTPS (DoH) name resolution' is set to 'Enabled: Allow DoH' or higher
Revision 1.1

Jun 13, 2022

Functional Update
  • 18.4.12 Ensure 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' is set to 'Enabled: 90% or less'