1.1.2.28 Set 'Audit Policy: Object Access: Kernel Object' to 'No Auditing'

Information

This subcategory reports when kernel objects such as processes and mutexes are accessed.

Solution

Make sure 'Object Access: Kernel Object' is set to no auditing.

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-12c.

Plugin: Windows

Control ID: 019a4e4dafe49efa0579ba48b7330800d4729e64d0e01f2cce3cbc4f8a212e4e