STIGQter: STIG Summary: Microsoft Windows Server 2012/2012 R2 Domain Controller Security Technical Implementation Guide Version: 3 Release: 2 Benchmark Date: 04 May 2021:

The system must query the certification authority to determine whether a public key certificate has been revoked before accepting the certificate for authentication purposes.

DISA Rule

SV-226256r569184_rule

Vulnerability Number

V-226256

Group Title

SRG-OS-000125-GPOS-00065

Rule Version

WN12-GE-000025

Severity

CAT II

CCI(s)

• CCI-000366 - The organization implements the security configuration settings.

Weight

10

Fix Recommendation

Install software that provides certificate validation and revocation checking.

Check Contents

Verify the system has software installed and running that provides certificate validation and revocation checking. If it does not, this is a finding.

Vulnerability Number

V-226256

Documentable

False

Rule Version

WN12-GE-000025

Severity Override Guidance

Verify the system has software installed and running that provides certificate validation and revocation checking. If it does not, this is a finding.

Check Content Reference

M

Target Key

4217

Comments