Microsoft Windows Server 2019 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000324-GPOS-00125
Group -
SRG-OS-000324-GPOS-00125
Group -
Windows Server 2019 Profile single process user right must only be assigned to the Administrators group.
Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities. Accounts with the "Profile single process" user right can monitor non-system processes ...Rule Medium Severity -
SRG-OS-000324-GPOS-00125
Group -
SRG-OS-000324-GPOS-00125
Group -
SRG-OS-000327-GPOS-00127
Group -
SRG-OS-000327-GPOS-00127
Group -
Windows Server 2019 must be configured to audit Detailed Tracking - Process Creation successes.
Maintaining an audit trail of system activity logs can help identify configuration errors, troubleshoot service disruptions, and analyze compromises that have occurred, as well as detect attacks. A...Rule Medium Severity -
SRG-OS-000327-GPOS-00127
Group -
SRG-OS-000327-GPOS-00127
Group -
SRG-OS-000327-GPOS-00127
Group -
Windows Server 2019 must be configured to audit Policy Change - Authentication Policy Change successes.
Maintaining an audit trail of system activity logs can help identify configuration errors, troubleshoot service disruptions, and analyze compromises that have occurred, as well as detect attacks. A...Rule Medium Severity -
SRG-OS-000327-GPOS-00127
Group -
SRG-OS-000327-GPOS-00127
Group -
Windows Server 2019 must be configured to audit Privilege Use - Sensitive Privilege Use successes.
Maintaining an audit trail of system activity logs can help identify configuration errors, troubleshoot service disruptions, and analyze compromises that have occurred, as well as detect attacks. A...Rule Medium Severity -
SRG-OS-000327-GPOS-00127
Group -
SRG-OS-000327-GPOS-00127
Group -
Windows Server 2019 must be configured to audit System - IPsec Driver successes.
Maintaining an audit trail of system activity logs can help identify configuration errors, troubleshoot service disruptions, and analyze compromises that have occurred, as well as detect attacks. A...Rule Medium Severity -
SRG-OS-000327-GPOS-00127
Group -
Windows Server 2019 must be configured to audit System - IPsec Driver failures.
Maintaining an audit trail of system activity logs can help identify configuration errors, troubleshoot service disruptions, and analyze compromises that have occurred, as well as detect attacks. A...Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.