POAM-00252
CSI Prep Deliverable: Final Scoping/ Logistics Meeting
FCC/OCA Action Officer coordinates teleconference with scheduled site and Team Members....
Recommended NIST Controls
Based on keyword analysis of POA&M description
| Control | Title | Family | Action |
|---|---|---|---|
| No recommendations available (ingest NIST controls first) | |||
Recommended STIG Rules
Based on keyword analysis of POA&M description
| Vuln ID | Title | Severity | Action |
|---|---|---|---|
| V-224869 | Windows Server 2016 password history must be configured to 24 passwords remembered. | CAT II | |
| V-224870 | Windows Server 2016 maximum password age must be configured to 60 days or less. | CAT II | |
| V-224884 | Windows Server 2016 must be configured to audit Account Management - Security Group Management successes. | CAT II | |
| V-225021 | The DoD Root CA certificates must be installed in the Trusted Root Store. | CAT II | |
| V-225022 | The DoD Interoperability Root CA cross-certificates must be installed in the Untrusted Certificates Store on unclassified systems. | CAT II | |
| V-225023 | The US DoD CCEB Interoperability Root CA cross-certificates must be installed in the Untrusted Certificates Store on unclassified systems. | CAT II | |
| V-259339 | The validity period for the Resource Record Signatures (RRSIGs) covering the Delegation Signer (DS) Resource Record (RR) for a zone's delegated children must be no less than two days and no more than one week. | CAT II | |
| V-259345 | The validity period for the Resource Record Signatures (RRSIGs) covering a zone's DNSKEY RRSet must be no less than two days and no more than one week. | CAT II | |
| V-243489 | Read-only Domain Controller (RODC) architecture and configuration must comply with directory services requirements. | CAT II | |
| V-243497 | Inter-site replication must be enabled and configured to occur at least daily. | CAT II |