V-254412
CAT IIWindows Server 2022 domain controllers must have a PKI server certificate.
- Ships Affected
- 1
- Total Findings
- 1
- Open
- 0
- Closed
- 0
Check Text
This applies to domain controllers. It is NA for other systems.
Run "MMC".
Select "Add/Remove Snap-in" from the "File" menu.
Select "Certificates" in the left pane and click "Add >".
Select "Computer Account" and click "Next".
Select the appropriate option for "Select the computer you want this snap-in to manage" and click "Finish".
Click "OK".
Select and expand the Certificates (Local Computer) entry in the left pane.
Select and expand the Personal entry in the left pane.
Select the Certificates entry in the left pane.
If no certificate for the domain controller exists in the right pane, this is a finding.
Fix Text
Obtain a server certificate for the domain controller.
STIG Reference
- STIG
- Microsoft Windows Server 2022 Security Technical Implementation Guide
- Version
- 2
- Release
- 8
- Rule ID
- SV-254412r958448_rule
All Occurrences
This vulnerability appears on 1 ship(s)
| Ship | Hull # | Source File | Status | Assigned To | Scan Date | Actions |
|---|---|---|---|---|---|---|
| LAB BASELINES | BASELINE | SCHR-P3-DP-001_WinServer2022_V2R7_20260305-133436.cklb | Unassigned | 2026-03-05T13:34:36 | View in Context |