POAM-00241
CSI Prep Deliverable: RFI Form
FCC/OCA Action Officer will obtain the completed RFI Form from unit....
Recommended NIST Controls
Based on keyword analysis of POA&M description
| Control | Title | Family | Action |
|---|---|---|---|
| No recommendations available (ingest NIST controls first) | |||
Recommended STIG Rules
Based on keyword analysis of POA&M description
| Vuln ID | Title | Severity | Action |
|---|---|---|---|
| V-224819 | Users with Administrative privileges must have separate accounts for administrative duties and normal operational tasks. | CAT I | |
| V-224820 | Passwords for the built-in Administrator account must be changed at least every 60 days. | CAT II | |
| V-224822 | Members of the Backup Operators group must have separate accounts for backup duties and normal operational tasks. | CAT II | |
| V-224826 | Windows Server 2016 must employ a deny-all, permit-by-exception policy to allow the execution of authorized software programs. | CAT II | |
| V-224827 | Windows Server 2016 domain-joined systems must have a Trusted Platform Module (TPM) enabled and ready for use. | CAT II | |
| V-224828 | Systems must be maintained at a supported servicing level. | CAT I | |
| V-224829 | The Windows Server 2016 system must use an anti-virus program. | CAT I | |
| V-224831 | Local volumes must use a format that supports NTFS attributes. | CAT I | |
| V-224832 | Permissions for the system drive root directory (usually C:\) must conform to minimum requirements. | CAT II | |
| V-224833 | Permissions for program file directories must conform to minimum requirements. | CAT II |