ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Active Directory Checklist, V1R1.2 Field Security Operations<br />
22 September 2006 Defense Information Systems Agency<br />
DS05.0150 Synch\Maint Software File Access Permissions<br />
STIG ID \ V-Key DS05.0150 \ V0011787<br />
Severity Cat II<br />
Short Name Synch\Maint Software File Access Permissions<br />
IA Controls DCSL-1<br />
MAC /Conf 1-CSP, 2-CSP, 3-CSP<br />
References AD STIG 2.3.1.4<br />
Long Name: Directory synchronization or maintenance program or configuration files do not<br />
have proper access permissions (ACLs).<br />
Checks:<br />
• With the assistance of the application SA, determine the directories containing<br />
synchronization or maintenance program *executable* and configuration files.<br />
• Using the locations determined, compare the ACLs of the directories to the<br />
specifications in Checklist appendix A.1.3.<br />
• If the actual permissions are not at least as restrictive as those in the appendix,<br />
then this is a Finding.<br />
UNCLASSIFIED<br />
5-36