III - Administrative Sensitive
Rules and Groups employed by this XCCDF Profile
-
SRG-OS-000076-GPOS-00044
<GroupDescription></GroupDescription>Group -
Passwords must be configured to expire.
<VulnDiscussion>Passwords that do not expire or are reused increase the exposure of a password with greater probability of being discovered o...Rule Medium Severity -
SRG-OS-000363-GPOS-00150
<GroupDescription></GroupDescription>Group -
System files must be monitored for unauthorized changes.
<VulnDiscussion>Monitoring system files for changes against a baseline on a regular basis may help detect the possible introduction of malici...Rule Medium Severity -
SRG-OS-000138-GPOS-00069
<GroupDescription></GroupDescription>Group -
Non-system-created file shares on a system must limit access to groups that require it.
<VulnDiscussion>Shares on a system provide network access. To prevent exposing sensitive information, where shares are necessary, permissions...Rule Medium Severity -
SRG-OS-000480-GPOS-00227
<GroupDescription></GroupDescription>Group -
Software certificate installation files must be removed from Windows Server 2016.
<VulnDiscussion>Use of software certificates and their accompanying installation files for end users to access resources is less secure than ...Rule Medium Severity -
SRG-OS-000185-GPOS-00079
<GroupDescription></GroupDescription>Group -
Systems requiring data at rest protections must employ cryptographic mechanisms to prevent unauthorized disclosure and modification of the information at rest.
<VulnDiscussion>This requirement addresses protection of user-generated data as well as operating system-specific configuration data. Organiz...Rule High Severity
Node 2
The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.