Skip to content

No profile (default benchmark)

Rules and Groups employed by this XCCDF Profile

  • Security identifiers (SIDs) must be configured to use only authentication data of directly trusted external or forest trust.

    <VulnDiscussion>Under some circumstances it is possible for attackers or rogue administrators that have compromised a domain controller in a ...
    Rule Medium Severity
  • SRG-OS-000080

    <GroupDescription></GroupDescription>
    Group
  • Selective Authentication must be enabled on outgoing forest trusts.

    &lt;VulnDiscussion&gt;Enabling Selective Authentication on outbound Active Directory (AD) forest trusts significantly strengthens access control by...
    Rule Medium Severity
  • SRG-OS-000121

    <GroupDescription></GroupDescription>
    Group
  • The Anonymous Logon and Everyone groups must not be members of the Pre-Windows 2000 Compatible Access group.

    &lt;VulnDiscussion&gt;The Pre-Windows 2000 Compatible Access group was created to allow Windows NT domains to interoperate with AD domains by allow...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules