Product:
BigFix Compliance
Title:
Updated DISA STIG Checklist for Windows Server 2019
Security Benchmark:
Microsoft Windows Server 2019 STIG SCAP Benchmark, V3R4
Published Sites:
DISA STIG Checklist for Windows Server 2019, site version 19
(The site version is provided for air-gap customers.)
Details:
Both analysis and remediation checks are included
Some of the checks allow you to use the parameterized setting to enable customization for compliance evaluation. Note that parameterization and remediation actions require the creation of a custom site.
‘Deploy and Run’ task has been implemented to validate compliance for the following rules:
● Windows Server 2019 must not allow anonymous SID/Name translation.
● Windows Server 2019 must have the built-in Windows password complexity policy enabled.
● Windows Server 2019 reversible password encryption must be disabled.
Note: This task has to be run periodically.
Actions to take:
To subscribe to the above site, you can use the License Overview Dashboard to enable and gather the site. Note that you must be entitled to the BigFix Compliance product, and you must be using BigFix version 10 and later.
If you use custom sites, update your custom sites accordingly to use the latest content. You can synchronize your content by using the Synchronize Custom Checks wizard. For more information, see
More information:
To know more about the BigFix Compliance SCM checklists, please see the following resources:
BigFix Forum:
https://forum.bigfix.com/c/release-announcements/compliance
BigFix Compliance SCM Checklists:
https://bigfix-wiki.hcltechsw.com/wikis/home?lang=enus#!/wiki/BigFix%20Wiki/page/SCM%20Checklists
We hope you find this latest release of SCM content useful and effective. Thank you!
– The BigFix Compliance team