DISA Windows Server 2016 STIG v2r3

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: DISA Windows Server 2016 STIG v2r3

Updated: 6/22/2022

Authority: Operating Systems and Applications

Plugin: Windows

Revision: 1.5

Estimated Item Count: 285

Audit Changelog

 
Revision 1.5

Jun 22, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
Revision 1.4

May 5, 2022

Miscellaneous
  • Metadata updated.
Revision 1.3

May 3, 2022

Functional Update
  • WN16-00-000220 - Windows Server 2016 accounts must require passwords.
Revision 1.2

Apr 25, 2022

Miscellaneous
  • References updated.
Revision 1.1

Mar 18, 2022

Functional Update
  • WN16-MS-000380 - The Deny log on as a batch job user right on member servers must be configured to prevent access from highly privileged domain accounts on domain systems and from unauthenticated access on all systems.
  • WN16-MS-000390 - The Deny log on as a service user right on member servers must be configured to prevent access from highly privileged domain accounts on domain systems. No other groups or accounts must be assigned this right.
  • WN16-MS-000400 - The Deny log on locally user right on member servers must be configured to prevent access from highly privileged domain accounts on domain systems and from unauthenticated access on all systems.
  • WN16-MS-000410 - The Deny log on through Remote Desktop Services user right on member servers must be configured to prevent access from highly privileged domain accounts and all local accounts on domain systems and from unauthenticated access on all systems.