Product:
BigFix Compliance PCI Add-on
Title:
PCI DSS Checklist for Windows Server (PCI v4.0)
Category:
PCI DSS Checklist
Security Benchmark:
Payment Card Industry Data Security Standard v4.0.1
Published Sites:
PCI DSS Checklist for Windows Server (PCI v4.0), site version 1.
PCI DSS Reporting, version 26.
(The site version is provided for air-gap customers.)
Details:
Total Fixlets in site: 476
Total Requirements covered: 9
Total Milestones covered: 5
The BigFix Compliance PCI Add-on team is pleased to announce the availability of the new checklist for BigFix Compliance PCI Add-on: PCI DSS Checklist for Windows Server (PCI v4.0) which includes coverage for Windows Server 2016, Windows Server 2019, Windows Server 2022 and Windows Server 2025.
This new checklist is based on the guidance provided by the Payment Card Industry Data Security Standard (PCI DSS) v4.0.1 and contains security configuration checks that evaluate the security settings of your Windows Server endpoints according to the PCI DSS standard.
As with most of the existing PCI DSS contents in the BigFix Compliance PCI Add-on library, this checklist includes checks with:
Corresponding analyses properties to report actual values.
Standardized titles, descriptions, and measured values for enhanced readability and consistency.
The ability to ensure correctness of compliance data.
Some of the checks allow you to use the parameterized setting to enable customization for compliance evaluation.
Most of the checks also support remediation that allows BigFix operators to efficiently remediate a non-compliance issue with a single action.
List of checks whose rules are not automatically assessed:
ID: 214131327 Title: Ensure PCI DSS Requirement 9 requirements are being operated (Rule not automatically assessed).
ID: 214131328 Title: Ensure PCI DSS Requirement 11 requirements are being operated (Rule not automatically assessed).
ID: 214131329 Title: Ensure PCI DSS Requirement 12 requirements are being operated (Rule not automatically assessed).
The following PCI DSS Policies are refreshed with the latest content from the PCI DSS Checklist for Windows Server (PCI v4.0) site:
PCI DSS Checklists
PCI DSS Milestones View
PCI DSS Requirements View
Actions to take:
Use the License Overview dashboard from the BES Support site to enable and gather the said site. Note that you must be entitled to the new content, and you are using BigFix version 10.0 and later.
Create a custom site for the PCI DSS Checklist for Windows Server (PCI v4.0) site to display the Windows Server results in the PCI DSS Policy Reports.
If you were involved in the Beta / Early Access Program for BigFix Compliance PCI Add-on, unsubscribe from the beta sites to avoid any conflicting issues with the production sites. If you do not unsubscribe from the beta sites, the content in the production sites will fail.
More information:
To know more about the BigFix Compliance PCI DSS checklists, please see the following resources:
BigFix Forum:
BigFix Compliance SCM Checklists: Welcome to Wikis
BigFix PCI Add-on User’s Guide:
We hope you find this latest release of SCM content useful and effective. Thank you!
– The BigFix Compliance PCI Add-on team