CIS Windows 2008 SSLF v1.2.0

Warning! Audit Deprecated

This audit file has been deprecated and will be removed in a future update.

View Next Version

Audit Details

Name: CIS Windows 2008 SSLF v1.2.0

Updated: 4/2/2021

Authority: CIS

Plugin: Windows

Revision: 1.37

Estimated Item Count: 249

Audit Changelog

 
Revision 1.37

Apr 2, 2021

Miscellaneous
  • Audit deprecated.
  • Metadata updated.
Revision 1.36

Nov 17, 2020

Functional Update
  • 1.8.12 Deny access to this computer from the network
  • 1.8.32 Deny log on locally
Revision 1.35

Sep 29, 2020

Miscellaneous
  • References updated.
Revision 1.34

Apr 23, 2020

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.33

Aug 5, 2019

Miscellaneous
  • Metadata updated.
  • See also link updated.
Revision 1.32

Mar 4, 2019

Functional Update
  • 1.9.27 Interactive logon: Message text for users attempting to log on
  • 1.9.28 Interactive logon: Message title for users attempting to log on
Miscellaneous
  • References updated.
  • Variables updated.
Revision 1.31

Feb 11, 2019

Miscellaneous
  • Metadata updated.
  • References updated.
Revision 1.30

Dec 14, 2018

Miscellaneous
  • References updated.
Revision 1.29

Jul 24, 2018

Functional Update
  • 1.1.10 Enforce user logon restrictions
  • 1.1.11 Maximum tolerance for computer clock synchronization
  • 1.1.12 Maximum lifetime for service ticket
  • 1.1.13 Maximum lifetime for user ticket renewal
  • 1.1.14 Maximum lifetime for user ticket
  • 1.12.3 Registry policy processing (NoBackgroundPolicy) - Domain Controller
  • 1.12.3 Registry policy processing (NoBackgroundPolicy) - Member Server
  • 1.12.3 Registry policy processing (NoGPOListChanges) - Domain Controller
  • 1.12.3 Registry policy processing (NoGPOListChanges) - Member Server
  • 1.3.18 Audit Policy: DS Access: Directory Service Access - Domain Controller
  • 1.3.18 Audit Policy: DS Access: Directory Service Access - Member Server
  • 1.3.19 Audit Policy: DS Access: Directory Service Changes - Domain Controller
  • 1.3.19 Audit Policy: DS Access: Directory Service Changes - Member Server
  • 1.7.1 User Account Control: Admin Approval Mode for the Built-in Administrator account
  • 1.7.2 User Account Control: Behavior of the elevation prompt for administrators in Admin Approval Mode
  • 1.7.3 User Account Control: Behavior of the elevation prompt for standard users
  • 1.7.4 User Account Control: Detect application installations and prompt for elevation
  • 1.7.5 User Account Control: Only elevate UIAccess applications that are installed in secure locations
  • 1.7.7 User Account Control: Switch to the secure desktop when prompting for elevation
  • 1.7.8 User Account Control: Virtualize file and registry write failures to per-user locations
  • 1.7.9 User Account Control: Allow UIAccess applications to prompt for elevation without using the secure desktop
  • 1.8.1 Access this computer from the network - Domain Controller
  • 1.8.1 Access this computer from the network - Member Server
  • 1.8.27 Add workstations to domain - Domain Controller
  • 1.8.27 Add workstations to domain - Member Server
  • 1.8.5 Bypass traverse checking - Domain Controller
  • 1.8.5 Bypass traverse checking - Member Server
  • 1.9.18 Domain controller: Allow server operators to schedule tasks - Domain Controller
  • 1.9.18 Domain controller: Allow server operators to schedule tasks - Member Server
  • 1.9.19 Domain controller: LDAP server signing requirements - Domain Controller
  • 1.9.19 Domain controller: LDAP server signing requirements - Member Server
  • 1.9.20 Domain controller: Refuse machine account password changes - Domain Controller
  • 1.9.20 Domain controller: Refuse machine account password changes - Member Server
  • 1.9.26 Interactive logon: Smart card removal behavior
  • 1.9.29 Interactive logon: Require smart card
  • 1.9.41 Network access: Named Pipes that can be accessed anonymously - Domain Controller
  • 1.9.41 Network access: Named Pipes that can be accessed anonymously - Member Server
  • CIS Security Benchmark For Microsoft Windows Server 2008 SSLF Domain Controller.
  • User Account Control (UAC) is off
Miscellaneous
  • Platform check updated.
  • References updated.
Revision 1.28

Jun 29, 2018

Functional Update
  • 1.1.7 Account lockout duration
  • 1.1.8 Account lockout threshold
Miscellaneous
  • Metadata updated.
  • References updated.