ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
ACTIVE DIRECTORY SECURITY CHECKLIST ... - Leet Upload
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Active Directory Checklist, V1R1.2 Field Security Operations<br />
22 September 2006 Defense Information Systems Agency<br />
DS05.0180 Synch\Maint Software Baseline Inventory<br />
STIG ID \ V-Key DS05.0180 \ V0011763<br />
Severity Cat III<br />
Short Name Synch\Maint Software Baseline Inventory<br />
IA Controls DCSW-1<br />
MAC /Conf 1-CSP, 2-CSP, 3-CSP<br />
References AD STIG 2.3.1.4<br />
Long Name: A synch\maint product used in routine, scheduled operations is not documented in<br />
the CCB and C&A software inventory or the inventory backup copy is not subject<br />
to adequate physical protections.<br />
Checks:<br />
• Interview the Application SA.<br />
• Verify whether the synch\maint product is used in routine, scheduled operations.<br />
• If the product is not used in routine, scheduled operations, then this check is Not<br />
Applicable.<br />
• Review the following local documentation to determine if the synch\maint<br />
product is listed:<br />
a) baseline software inventory of the CCB<br />
b) applicable C&A documents<br />
c) software inventory backup copy stored in a fire-rated container or subject to<br />
other appropriate physical protections from loss.<br />
• If the synch\maint product is *not* documented in the required locations, then<br />
this is a Finding.<br />
UNCLASSIFIED<br />
3-15