文件名称:CIS_Microsoft_Windows_Server_2016_RTM_Release 1607_Benchmark_v1.0.0.pdf
文件大小:4.01MB
文件格式:PDF
更新时间:2022-09-28 13:16:43
windows 2016 CIS Benchmark
windows server 2016 的安全配置最佳实战。 Table of Contents Overview ............................................................................................................................................................... 24 Intended Audience ........................................................................................................................................ 24 Consensus Guidance ..................................................................................................................................... 24 Typographical Conventions ...................................................................................................................... 25 Scoring Information ..................................................................................................................................... 25 Profile Definitions ......................................................................................................................................... 26 Acknowledgements ...................................................................................................................................... 28 Recommendations ............................................................................................................................................. 29 1 Account Policies ......................................................................................................................................... 29 1.1 Password Policy ................................................................................................................................. 29 1.1.1 (L1) Ensure 'Enforce password history' is set to '24 or more password(s)' (Scored) ................................................................................................................................................... 29 1.1.2 (L1) Ensure 'Maximum password age' is set to '60 or fewer days, but not 0' (Scored) ................................................................................................................................................... 32 1.1.3 (L1) Ensure 'Minimum password age' is set to '1 or more day(s)' (Scored) ..... 34 1.1.4 (L1) Ensure 'Minimum password length' is set to '14 or more character(s)' (Scored) ................................................................................................................................................... 36 1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled' (Scored) ................................................................................................................................................... 38 1.1.6 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled' (Scored) ................................................................................................................................................... 41 1.2 Account Lockout Policy ................................................................................................................... 43 1.2.1 (L1) Ensure 'Account lockout duration' is set to '15 or more minute(s)' (Scored) ................................................................................................................................................... 43 1.2.2 (L1) Ensure 'Account lockout threshold' is set to '10 or fewer invalid logon attempt(s), but not 0' (Scored) ....................................................................................................... 45 1.2.3 (L1) Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)' (Scored) ............................................................................................................................. 47