CIS Windows Server 2012 DC L1 v2.2.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Windows Server 2012 DC L1 v2.2.0

Updated: 12/21/2022

Authority: Operating Systems and Applications

Plugin: Windows

Revision: 1.8

Estimated Item Count: 321

Audit Changelog

 
Revision 1.8

Dec 21, 2022

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
  • References updated.
  • Variables updated.
Revision 1.7

Dec 7, 2022

Miscellaneous
  • Metadata updated.
Revision 1.6

Apr 25, 2022

Miscellaneous
  • Metadata updated.
Revision 1.5

Mar 29, 2022

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.4

Oct 29, 2021

Functional Update
  • 19.1.3.1 Ensure 'Enable screen saver' is set to 'Enabled'
  • 19.1.3.2 Ensure 'Force specific screen saver: Screen saver executable name' is set to 'Enabled: scrnsave.scr'
  • 19.1.3.3 Ensure 'Password protect the screen saver' is set to 'Enabled'
  • 19.1.3.4 Ensure 'Screen saver timeout' is set to 'Enabled: 900 seconds or fewer, but not 0'
  • 19.5.1.1 Ensure 'Turn off toast notifications on the lock screen' is set to 'Enabled'
  • 19.7.26.1 Ensure 'Prevent users from sharing files within their profile.' is set to 'Enabled'
  • 19.7.4.1 Ensure 'Do not preserve zone information in file attachments' is set to 'Disabled'
  • 19.7.4.2 Ensure 'Notify antivirus programs when opening attachments' is set to 'Enabled'
  • 19.7.41.1 Ensure 'Always install with elevated privileges' is set to 'Disabled'
Miscellaneous
  • Platform check updated.
  • References updated.
Added
  • CIS_DC_SERVER_2012_Level_1_v2.2.0.audit from CIS Security Benchmark For Microsoft Windows Server 2012 DC Level 1
Removed
  • CIS Security Benchmark For Microsoft Windows Server 2012 DC Level 1
Revision 1.3

Jun 17, 2021

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.2

Nov 17, 2020

Functional Update
  • 2.2.20 Ensure 'Deny access to this computer from the network' to include 'Guests' (DC only)
  • 2.2.22 Ensure 'Deny log on as a batch job' to include 'Guests'
  • 2.2.23 Ensure 'Deny log on as a service' to include 'Guests'
  • 2.2.24 Ensure 'Deny log on locally' to include 'Guests'
  • 2.2.25 Ensure 'Deny log on through Remote Desktop Services' to include 'Guests' (DC only)
  • 2.2.43 Ensure 'Profile system performance' is set to 'Administrators, NT SERVICE\WdiServiceHost'
Revision 1.1

Sep 29, 2020

Miscellaneous
  • References updated.