POAM Items - CSIDS

Item #	Assets	Title	Severity	Progress	Status	Due Date	Actions
POAM-00094	T-ESD-1	V-225015: The "Deny access to this computer from the network" user right on member servers must be configured	CAT I	0/8	Open	5 days left	View Mappings
POAM-00095	T-ESD-1	V-225017: The "Deny log on as a service" user right on member servers must be configured to prevent access fro	CAT I	0/8	Open	5 days left	View Mappings
POAM-00096	T-ESD-1	V-225018: The "Deny log on locally" user right on member servers must be configured to prevent access from hig	CAT I	0/8	Open	5 days left	View Mappings
POAM-00097	T-ESD-1	V-225019: The "Deny log on through Remote Desktop Services" user right on member servers must be configured to	CAT I	0/8	Open	5 days left	View Mappings
POAM-00098	T-ESD-1	V-257502: Windows Server 2016 must have PowerShell Transcription enabled.	CAT I	0/8	Open	5 days left	View Mappings
POAM-00099	T-ESD-1	V-225224: The Trust Providers Software Publishing State must be set to 0x23C00.	CAT I	0/12	Open	5 days left	View Mappings
POAM-00100	T-ESD-1	V-225233: Trust must be established prior to enabling the loading of remote code in .Net 4.	CAT I	0/12	Open	5 days left	View Mappings
POAM-00101	T-ESD-1	V-218786: Both the log file and Event Tracing for Windows (ETW) for the IIS 10.0 web server must be enabled.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00102	T-ESD-1	V-218788: The IIS 10.0 web server must produce log records that contain sufficient information to establish th	CAT I	0/2	Open	5 days left	View Mappings
POAM-00103	T-ESD-1	V-218789: The IIS 10.0 web server must produce log records containing sufficient information to establish the	CAT I	0/2	Open	5 days left	View Mappings
POAM-00104	T-ESD-1	V-218790: The log information from the IIS 10.0 web server must be protected from unauthorized modification or	CAT I	0/2	Open	5 days left	View Mappings
POAM-00105	T-ESD-1	V-218793: The IIS 10.0 web server must only contain functions necessary for operation.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00106	T-ESD-1	V-218797: The IIS 10.0 web server must be reviewed on a regular basis to remove any Operating System features,	CAT I	0/2	Open	5 days left	View Mappings
POAM-00107	T-ESD-1	V-218798: The IIS 10.0 web server must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell	CAT I	0/2	Open	5 days left	View Mappings
POAM-00108	T-ESD-1	V-218805: The IIS 10.0 web server must accept only system-generated session identifiers.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00109	T-ESD-1	V-218806: The IIS 10.0 web server must augment re-creation to a stable and known baseline.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00110	T-ESD-1	V-218812: The IIS 10.0 web server must restrict inbound connections from non-secure zones.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00111	T-ESD-1	V-218817: The IIS 10.0 web server must not be running on a system providing any other role.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00112	T-ESD-1	V-218819: The IIS 10.0 web server must be tuned to handle the operational requirements of the hosted applicati	CAT I	0/2	Open	5 days left	View Mappings
POAM-00113	T-ESD-1	V-228572: An IIS Server configured to be a SMTP relay must require authentication.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00116	T-ESD-1	V-268325: The Request Smuggling filter must be enabled.	CAT I	0/2	Open	5 days left	View Mappings
POAM-00117	T-ESD-1	V-218739: Both the log file and Event Tracing for Windows (ETW) for each IIS 10.0 website must be enabled.	CAT I	0/3	Open	5 days left	View Mappings
POAM-00118	T-ESD-1	V-218741: The IIS 10.0 website must produce log records that contain sufficient information to establish the o	CAT I	0/3	Open	5 days left	View Mappings
POAM-00119	T-ESD-1	V-218742: The IIS 10.0 website must produce log records containing sufficient information to establish the ide	CAT I	0/3	Open	5 days left	View Mappings
POAM-00120	T-ESD-1	V-218743: The IIS 10.0 website must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell pro	CAT I	0/3	Open	5 days left	View Mappings
POAM-00121	T-ESD-1	V-218744: Mappings to unused and vulnerable scripts on the IIS 10.0 website must be removed.	CAT I	0/3	Open	5 days left	View Mappings
POAM-00122	T-ESD-1	V-218749: A private IIS 10.0 website authentication mechanism must use client certificates to transmit session	CAT I	0/3	Open	5 days left	View Mappings
POAM-00123	T-ESD-1	V-218763: The IIS 10.0 websites connectionTimeout setting must be explicitly configured to disconnect an idle	CAT I	0/3	Open	5 days left	View Mappings
POAM-00125	T-ESD-1	V-218770: Cookies exchanged between the IIS 10.0 website and the client must have cookie properties set to pro	CAT I	0/3	Open	5 days left	View Mappings
POAM-00126	T-ESD-1	V-218782: The required DoD banner page must be displayed to authenticated users accessing a DoD private websit	CAT I	0/3	Open	5 days left	View Mappings
POAM-00127	T-ESD-1	V-228355: Exchange servers must use approved DoD certificates.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00128	T-ESD-1	V-228358: The Exchange Email Diagnostic log level must be set to the lowest level.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00129	T-ESD-1	V-228361: Exchange Email Subject Line logging must be disabled.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00130	T-ESD-1	V-228363: Exchange Queue monitoring must be configured with threshold and action.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00131	T-ESD-1	V-228370: Exchange Local machine policy must require signed scripts.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00132	T-ESD-1	V-228371: The Exchange Internet Message Access Protocol 4 (IMAP4) service must be disabled.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00133	T-ESD-1	V-228372: The Exchange Post Office Protocol 3 (POP3) service must be disabled.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00134	T-ESD-1	V-228376: Exchange Mailboxes must be retained until backups are complete.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00141	T-ESD-1	V-228391: Exchange Internal Receive connectors must not allow anonymous connections.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00142	T-ESD-1	V-228392: Exchange external/Internet-bound automated response messages must be disabled.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00144	T-ESD-1	V-228402: Exchange software must be monitored for unauthorized changes.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00145	T-ESD-1	V-228404: Exchange Outlook Anywhere clients must use NTLM authentication to access email.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00146	T-ESD-1	V-228406: Exchange must not send delivery reports to remote domains.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00147	T-ESD-1	V-228407: Exchange must not send nondelivery reports to remote domains.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00148	T-ESD-1	V-228408: The Exchange SMTP automated banner response must not reveal server details.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00149	T-ESD-1	V-228409: Exchange Internal Send connectors must use an authentication level.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00150	T-ESD-1	V-228410: Exchange must provide Mailbox databases in a highly available and redundant configuration.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00151	T-ESD-1	V-228417: Exchange must have forms-based authentication disabled.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00152	T-ESD-1	V-228418: Exchange must have authenticated access set to Integrated Windows Authentication only.	CAT I	0/1	Open	5 days left	View Mappings
POAM-00153	T-ESD-1	V-224824: Manually managed application account passwords must be changed at least annually or when a system ad	CAT I	0/8	Open	5 days left	View Mappings

POAM-00094

T-ESD-1

V-225015: The "Deny access to this computer from the network" user right on member servers must be configured

CAT I

0/8

Open

5 days left

View Mappings

POAM-00095

T-ESD-1

V-225017: The "Deny log on as a service" user right on member servers must be configured to prevent access fro

CAT I

0/8

Open

5 days left

View Mappings

POAM-00096

T-ESD-1

V-225018: The "Deny log on locally" user right on member servers must be configured to prevent access from hig

CAT I

0/8

Open

5 days left

View Mappings

POAM-00097

T-ESD-1

V-225019: The "Deny log on through Remote Desktop Services" user right on member servers must be configured to

CAT I

0/8

Open

5 days left

View Mappings

POAM-00098

T-ESD-1

V-257502: Windows Server 2016 must have PowerShell Transcription enabled.

CAT I

0/8

Open

5 days left

View Mappings

POAM-00099

T-ESD-1

V-225224: The Trust Providers Software Publishing State must be set to 0x23C00.

CAT I

0/12

Open

5 days left

View Mappings

POAM-00100

T-ESD-1

V-225233: Trust must be established prior to enabling the loading of remote code in .Net 4.

CAT I

0/12

Open

5 days left

View Mappings

POAM-00101

T-ESD-1

V-218786: Both the log file and Event Tracing for Windows (ETW) for the IIS 10.0 web server must be enabled.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00102

T-ESD-1

V-218788: The IIS 10.0 web server must produce log records that contain sufficient information to establish th

CAT I

0/2

Open

5 days left

View Mappings

POAM-00103

T-ESD-1

V-218789: The IIS 10.0 web server must produce log records containing sufficient information to establish the

CAT I

0/2

Open

5 days left

View Mappings

POAM-00104

T-ESD-1

V-218790: The log information from the IIS 10.0 web server must be protected from unauthorized modification or

CAT I

0/2

Open

5 days left

View Mappings

POAM-00105

T-ESD-1

V-218793: The IIS 10.0 web server must only contain functions necessary for operation.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00106

T-ESD-1

V-218797: The IIS 10.0 web server must be reviewed on a regular basis to remove any Operating System features,

CAT I

0/2

Open

5 days left

View Mappings

POAM-00107

T-ESD-1

V-218798: The IIS 10.0 web server must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell

CAT I

0/2

Open

5 days left

View Mappings

POAM-00108

T-ESD-1

V-218805: The IIS 10.0 web server must accept only system-generated session identifiers.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00109

T-ESD-1

V-218806: The IIS 10.0 web server must augment re-creation to a stable and known baseline.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00110

T-ESD-1

V-218812: The IIS 10.0 web server must restrict inbound connections from non-secure zones.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00111

T-ESD-1

V-218817: The IIS 10.0 web server must not be running on a system providing any other role.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00112

T-ESD-1

V-218819: The IIS 10.0 web server must be tuned to handle the operational requirements of the hosted applicati

CAT I

0/2

Open

5 days left

View Mappings

POAM-00113

T-ESD-1

V-228572: An IIS Server configured to be a SMTP relay must require authentication.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00116

T-ESD-1

V-268325: The Request Smuggling filter must be enabled.

CAT I

0/2

Open

5 days left

View Mappings

POAM-00117

T-ESD-1

V-218739: Both the log file and Event Tracing for Windows (ETW) for each IIS 10.0 website must be enabled.

CAT I

0/3

Open

5 days left

View Mappings

POAM-00118

T-ESD-1

V-218741: The IIS 10.0 website must produce log records that contain sufficient information to establish the o

CAT I

0/3

Open

5 days left

View Mappings

POAM-00119

T-ESD-1

V-218742: The IIS 10.0 website must produce log records containing sufficient information to establish the ide

CAT I

0/3

Open

5 days left

View Mappings

POAM-00120

T-ESD-1

V-218743: The IIS 10.0 website must have Multipurpose Internet Mail Extensions (MIME) that invoke OS shell pro

CAT I

0/3

Open

5 days left

View Mappings

POAM-00121

T-ESD-1

V-218744: Mappings to unused and vulnerable scripts on the IIS 10.0 website must be removed.

CAT I

0/3

Open

5 days left

View Mappings

POAM-00122

T-ESD-1

V-218749: A private IIS 10.0 website authentication mechanism must use client certificates to transmit session

CAT I

0/3

Open

5 days left

View Mappings

POAM-00123

T-ESD-1

V-218763: The IIS 10.0 websites connectionTimeout setting must be explicitly configured to disconnect an idle

CAT I

0/3

Open

5 days left

View Mappings

POAM-00125

T-ESD-1

V-218770: Cookies exchanged between the IIS 10.0 website and the client must have cookie properties set to pro

CAT I

0/3

Open

5 days left

View Mappings

POAM-00126

T-ESD-1

V-218782: The required DoD banner page must be displayed to authenticated users accessing a DoD private websit

CAT I

0/3

Open

5 days left

View Mappings

POAM-00127

T-ESD-1

V-228355: Exchange servers must use approved DoD certificates.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00128

T-ESD-1

V-228358: The Exchange Email Diagnostic log level must be set to the lowest level.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00129

T-ESD-1

V-228361: Exchange Email Subject Line logging must be disabled.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00130

T-ESD-1

V-228363: Exchange Queue monitoring must be configured with threshold and action.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00131

T-ESD-1

V-228370: Exchange Local machine policy must require signed scripts.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00132

T-ESD-1

V-228371: The Exchange Internet Message Access Protocol 4 (IMAP4) service must be disabled.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00133

T-ESD-1

V-228372: The Exchange Post Office Protocol 3 (POP3) service must be disabled.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00134

T-ESD-1

V-228376: Exchange Mailboxes must be retained until backups are complete.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00141

T-ESD-1

V-228391: Exchange Internal Receive connectors must not allow anonymous connections.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00142

T-ESD-1

V-228392: Exchange external/Internet-bound automated response messages must be disabled.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00144

T-ESD-1

V-228402: Exchange software must be monitored for unauthorized changes.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00145

T-ESD-1

V-228404: Exchange Outlook Anywhere clients must use NTLM authentication to access email.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00146

T-ESD-1

V-228406: Exchange must not send delivery reports to remote domains.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00147

T-ESD-1

V-228407: Exchange must not send nondelivery reports to remote domains.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00148

T-ESD-1

V-228408: The Exchange SMTP automated banner response must not reveal server details.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00149

T-ESD-1

V-228409: Exchange Internal Send connectors must use an authentication level.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00150

T-ESD-1

V-228410: Exchange must provide Mailbox databases in a highly available and redundant configuration.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00151

T-ESD-1

V-228417: Exchange must have forms-based authentication disabled.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00152

T-ESD-1

V-228418: Exchange must have authenticated access set to Integrated Windows Authentication only.

CAT I

0/1

Open

5 days left

View Mappings

POAM-00153

T-ESD-1

V-224824: Manually managed application account passwords must be changed at least annually or when a system ad

CAT I

0/8

Open

5 days left

View Mappings

Close POA&M