Skip to content

I - Mission Critical Sensitive

Rules and Groups employed by this XCCDF Profile

  • Microsoft Defender AV must be configured to not exclude files for scanning.

    <VulnDiscussion>This policy setting allows disabling of scheduled and real-time scanning for files under the paths specified or for the fully...
    Rule Medium Severity
  • SRG-APP-000278

    <GroupDescription></GroupDescription>
    Group
  • Microsoft Defender AV must be configured to not exclude files opened by specified processes.

    &lt;VulnDiscussion&gt;This policy setting allows the disabling of scheduled and real-time scanning for any file opened by any of the specified proc...
    Rule Medium Severity
  • SRG-APP-000278

    <GroupDescription></GroupDescription>
    Group
  • Microsoft Defender AV must be configured to enable the Automatic Exclusions feature.

    &lt;VulnDiscussion&gt;This setting allows an administrator to specify if Automatic Exclusions feature for Server SKUs should be turned off.&lt;/Vul...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules