STIGQter STIGQter: STIG Summary: Microsoft Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide Version: 3 Release: 2 Benchmark Date: 04 May 2021:

Security configuration tools or equivalent processes must be used to configure and maintain platforms for security compliance.

DISA Rule

SV-226040r569184_rule

Vulnerability Number

V-226040

Group Title

SRG-OS-000480-GPOS-00227

Rule Version

WN12-00-000013

Severity

CAT III

CCI(s)

Weight

10

Fix Recommendation

Implement a process using security configuration tools or the equivalent to configure Windows systems to meet security requirements.

Check Contents

Verify security configuration tools or equivalent processes are being used to configure Windows systems to meet security requirements. If security configuration tools or equivalent processes are not used, this is a finding.

Security configuration tools that are integrated into Windows, such as Group Policies and Security Templates, may be used to configure platforms for security compliance.

If an alternate method is used to configure a system (e.g., manually using the DISA Windows Security STIGs, etc.) and the same configured result is achieved, this is acceptable.

Vulnerability Number

V-226040

Documentable

False

Rule Version

WN12-00-000013

Severity Override Guidance

Verify security configuration tools or equivalent processes are being used to configure Windows systems to meet security requirements. If security configuration tools or equivalent processes are not used, this is a finding.

Security configuration tools that are integrated into Windows, such as Group Policies and Security Templates, may be used to configure platforms for security compliance.

If an alternate method is used to configure a system (e.g., manually using the DISA Windows Security STIGs, etc.) and the same configured result is achieved, this is acceptable.

Check Content Reference

M

Target Key

4217

Comments