Microsoft Windows 11 Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
The "Modify firmware environment values" user right must only be assigned to the Administrators group.
Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities. Accounts with the "Modify firmware environment values" user right can change hardware c...Rule Medium Severity -
SRG-OS-000324-GPOS-00125
Group -
The "Perform volume maintenance tasks" user right must only be assigned to the Administrators group.
Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities. Accounts with the "Perform volume maintenance tasks" user right can manage volume and d...Rule Medium Severity -
SRG-OS-000324-GPOS-00125
Group -
SRG-OS-000324-GPOS-00125
Group -
The "Take ownership of files or other objects" user right must only be assigned to the Administrators group.
Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities. Accounts with the "Take ownership of files or other objects" user right can take owners...Rule Medium Severity -
SRG-OS-000185-GPOS-00079
Group -
Internet Explorer must be disabled for Windows 11.
Internet Explorer 11 (IE11) is not supported on Windows 11 semi-annual channel.Rule Medium Severity -
SRG-OS-000480-GPOS-00227
Group -
Windows 11 must not have portproxy enabled or in use.
Having portproxy enabled or configured in Windows 10 could allow a man-in-the-middle attack.Rule Medium Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.