STIGQter: STIG Summary: Microsoft Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide Version: 3 Release: 2 Benchmark Date: 04 May 2021: STIGQter: STIG Summary: Microsoft Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide Version: 3 Release: 2 Benchmark Date: 04 May 2021:SV-226077r569184_rule
V-226077
SRG-OS-000480-GPOS-00227
WN12-AD-000008-DC
CAT III
10
Configure the time synchronization tool to log time source switching. If the Windows Time Service is used, configure the following registry value.
Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \System\CurrentControlSet\Services\W32Time\Config\
Value Name: EventLogFlags
Type: REG_DWORD
Value: 2 or 3
Verify logging is configured to capture time source switches.
If the Windows Time Service is used, verify the following registry value. If it is not configured as specified, this is a finding.
Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \System\CurrentControlSet\Services\W32Time\Config\
Value Name: EventLogFlags
Type: REG_DWORD
Value: 2 or 3
If another time synchronization tool is used, review the available configuration options and logs. If the tool has time source logging capability and it is not enabled, this is a finding.
V-226077
False
WN12-AD-000008-DC
Verify logging is configured to capture time source switches.
If the Windows Time Service is used, verify the following registry value. If it is not configured as specified, this is a finding.
Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \System\CurrentControlSet\Services\W32Time\Config\
Value Name: EventLogFlags
Type: REG_DWORD
Value: 2 or 3
If another time synchronization tool is used, review the available configuration options and logs. If the tool has time source logging capability and it is not enabled, this is a finding.
M
4217