Security configuration tools or equivalent processes must be used to configure and maintain platforms for security compliance.

From Windows 2008 Domain Controller Security Technical Implementation Guide

Part of Security Configuration Tools

Associated with: CCI-000366

SV-29669r2_rule Security configuration tools or equivalent processes must be used to configure and maintain platforms for security compliance.

Vulnerability discussion

Security configuration tools such as Group Policies and Security Templates allow system administrators to consolidate security-related system settings into a single configuration file. These settings can then be applied consistently to any number of Windows systems.

Check content

Verify security configuration tools or equivalent processes are being used to configure Windows systems to meet security requirements. If security configuration tools or equivalent processes are not used, this is a finding. Security configuration tools that are integrated into Windows, such as Group Policies and Security Templates, may be used to configure platforms for security compliance. If an alternate method is used to configure a system (e.g., manually using the DISA Windows Security STIGs, etc.) and the same configured result is achieved, this is acceptable.

Fix text

Implement a process using security configuration tools or the equivalent to configure Windows systems to meet security requirements.

Pro Tips

Lavender hyperlinks in small type off to the right (of CSS class id, if you view the page source) point to globally unique URIs for each document and item. Copy the link location and paste anywhere you need to talk unambiguously about these things.

You can obtain data about documents and items in other formats. Simply provide an HTTP header Accept: text/turtle or Accept: application/rdf+xml.

Powered by sagemincer