Windows Server 2022 generate security audits user right must only be assigned to Local Service and Network Service.

An XCCDF Rule

Details
Profiles

Description

Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities. The "Generate security audits" user right specifies users and processes that can generate Security Log audit records, which must only be the system service accounts defined.

ID: SV-254502r958726_rule
Version: WN22-UR-000120
Severity: Medium
References: CCI-002235
Updated: 6 days ago

Remediation Templates

Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> User Rights Assignment >> Generate security audits to include only the following accounts or groups:

- Local Service
- Network Service

Windows Server 2022 generate security audits user right must only be assigned to Local Service and Network Service.

Description

Remediation Templates

A Manual Procedure