WN16-00-000300 - The roles and features required by the system must be documented.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Unnecessary roles and features increase the attack surface of a system. Limiting roles and features of a system to only those necessary reduces this potential. The standard installation option (previously called Server Core) further reduces this when selected at installation.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Document the roles and features required for the system to operate. Uninstall any that are not required.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2016_V2R5_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000381, Rule-ID|SV-224845r569186_rule, STIG-ID|WN16-00-000300, STIG-Legacy|SV-87929, STIG-Legacy|V-73277, Vuln-ID|V-224845

Plugin: Windows

Control ID: 6349aaa0312aae6927475057230adbd4a83c2e15e68ddf28928beb12e88321bc