Active Directory Domain Security Technical Implementation Guide
Rules, Groups, and Values defined within the XCCDF Benchmark
-
SRG-OS-000480
Group -
SRG-OS-000480
Group -
SRG-OS-000480
Group -
The domain functional level must be at a Windows Server version still supported by Microsoft.
Domains operating at functional levels below Windows Server versions no longer supported by Microsoft reduce the level of security in the domain and forest as advanced features of the directory are...Rule Medium Severity -
SRG-OS-000480
Group -
Access to need-to-know information must be restricted to an authorized community of interest.
Because trust relationships effectively eliminate a level of authentication in the trusting domain or forest, they represent less stringent access control at the domain or forest level in which the...Rule Medium Severity -
SRG-OS-000480
Group -
Interconnections between DoD directory services of different classification levels must use a cross-domain solution that is approved for use with inter-classification trusts.
If a robust cross-domain solution is not used, then it could permit unauthorized access to classified data. To support secure access between resources of different classification levels, the soluti...Rule High Severity -
SRG-OS-000480
Group -
Each cross-directory authentication configuration must be documented.
Active Directory (AD) external, forest, and realm trust configurations are designed to extend resource access to a wider range of users (those in other directories). If specific baseline documenta...Rule Low Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.