STIGQter: STIG Summary: Microsoft Windows Server 2016 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 04 May 2021: STIGQter: STIG Summary: Microsoft Windows Server 2016 Security Technical Implementation Guide Version: 2 Release: 2 Benchmark Date: 04 May 2021:SV-224829r569237_rule
V-224829
SRG-OS-000480-GPOS-00227
WN16-00-000120
CAT I
10
If no anti-virus software is in use, install Windows Defender or third-party anti-virus.
Open "PowerShell".
Enter "Install-WindowsFeature -Name Windows-Defender”
For third-party anti-virus, install per anti-virus instructions and disable Windows Defender.
Open "PowerShell".
Enter “Uninstall-WindowsFeature -Name Windows-Defender”.
Verify an anti-virus solution is installed on the system. The anti-virus solution may be bundled with an approved host-based security solution.
If there is no anti-virus solution installed on the system, this is a finding.
Verify if Windows Defender is in use or enabled:
Open "PowerShell".
Enter "get-service | where {$_.DisplayName -Like "*Defender*"} | Select Status,DisplayName”
Verify if third-party anti-virus is in use or enabled:
Open "PowerShell".
Enter "get-service | where {$_.DisplayName -Like "*mcafee*"} | Select Status,DisplayName”
Enter "get-service | where {$_.DisplayName -Like "*symantec*"} | Select Status,DisplayName”
V-224829
False
WN16-00-000120
Verify an anti-virus solution is installed on the system. The anti-virus solution may be bundled with an approved host-based security solution.
If there is no anti-virus solution installed on the system, this is a finding.
Verify if Windows Defender is in use or enabled:
Open "PowerShell".
Enter "get-service | where {$_.DisplayName -Like "*Defender*"} | Select Status,DisplayName”
Verify if third-party anti-virus is in use or enabled:
Open "PowerShell".
Enter "get-service | where {$_.DisplayName -Like "*mcafee*"} | Select Status,DisplayName”
Enter "get-service | where {$_.DisplayName -Like "*symantec*"} | Select Status,DisplayName”
M
4205