API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 0deb27778a0f9eeb | SCA Check 34621: Ensure 'Audit Logon' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 811a10edc5585515 | SCA Check 34622: Ensure 'Audit Other Logon/Logoff Events' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 5856d1a32eb0634e | SCA Check 34623: Ensure 'Audit Special Logon' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 7fc057b53e0b1131 | SCA Check 34624: Ensure 'Audit Detailed File Share' is set to include 'Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0009', 'TA0010'] Techniques:… | wazuh-sca |
| 208101f841fa476d | SCA Check 34625: Ensure 'Audit File Share' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005',… | wazuh-sca |
| 4e048eb0d4a567b4 | SCA Check 34626: Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006',… | wazuh-sca |
| 3e208a67d068f9b4 | SCA Check 34627: Ensure 'Audit Removable Storage' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| d1a1ba187ff280d7 | SCA Check 34628: Ensure 'Audit Audit Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| ff85eba259dcdd41 | SCA Check 34629: Ensure 'Audit Authentication Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 708e396ab4ad4982 | SCA Check 34630: Ensure 'Audit Authorization Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 0abd89912ac79887 | SCA Check 34631: Ensure 'Audit MPSSVC Rule-Level Policy Change' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006',… | wazuh-sca |
| 953c3426fb243b29 | SCA Check 34632: Ensure 'Audit Other Policy Change Events' is set to include 'Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| af7be2afc479f0d1 | SCA Check 34633: Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 83b38a1cb3baac6c | SCA Check 34634: Ensure 'Audit IPsec Driver' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| faf0e68b8c2d1140 | SCA Check 34635: Ensure 'Audit Other System Events' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 87c2b3bb92a349a9 | SCA Check 34636: Ensure 'Audit Security State Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 2bf372adf0ead233 | SCA Check 34637: Ensure 'Audit Security System Extension' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 0b1ecae50b92bcb1 | SCA Check 34638: Ensure 'Audit System Integrity' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| d7320d1ae737d142 | SCA Check 34639: Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| aedd22d3a0195a8f | SCA Check 34640: Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0.… | wazuh-sca |
| 92074031fdcb2531 | SCA Check 34641: Ensure 'Enable Local Admin Password Management' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006', 'TA0003']… | wazuh-sca |
| 26123d37d8898185 | SCA Check 34642: Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only). Policy: CIS Microsoft Windows Server 2012… | wazuh-sca |
| 05c0db39c0a3cbe6 | SCA Check 34643: Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more' (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006',… | wazuh-sca |
| 395c8d35d22e8cc7 | SCA Check 34644: Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer' (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0006',… | wazuh-sca |
| 06871a3c42d99b05 | SCA Check 34645: Ensure 'Apply UAC restrictions to local accounts on network logons' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| e65ef00680366012 | SCA Check 34646: Ensure 'Configure SMB v1 client' is set to 'Enabled: Bowser, MRxSmb20, NSI'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| 806f79f47a1fa2ab | SCA Check 34647: Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005']… | wazuh-sca |
| 578a73168a2864af | SCA Check 34648: Ensure 'Configure SMB v1 server' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| 221c8834d50a80ce | SCA Check 34649: Ensure 'Enable Structured Exception Handling Overwrite Protection (SEHOP)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| 0b6aaf0a20c42b49 | SCA Check 34650: Ensure 'NetBT NodeType configuration' is set to 'Enabled: P-node (recommended)'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| 17adc60bc819805a | SCA Check 34651: Ensure 'WDigest Authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005',… | wazuh-sca |
| 256955de2db77915 | SCA Check 34652: Ensure 'MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0009',… | wazuh-sca |
| 7db4ae790827fde5 | SCA Check 34653: Ensure 'MSS: (DisableIPSourceRouting IPv6) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely… | wazuh-sca |
| 9b84593d04b3ffaf | SCA Check 34654: Ensure 'MSS: (DisableIPSourceRouting) IP source routing protection level (protects against packet spoofing)' is set to 'Enabled: Highest protection, source routing is completely… | wazuh-sca |
| feaaae1af95f8bfb | SCA Check 34655: Ensure 'MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0.… | wazuh-sca |
| 2b9be0daf30638ee | SCA Check 34656: Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'. Policy: CIS Microsoft Windows Server 2012… | wazuh-sca |
| 3a50aa3e7921c995 | SCA Check 34657: Ensure 'MSS: (NoNameReleaseOnDemand) Allow the computer to ignore NetBIOS name release requests except from WINS servers' is set to 'Enabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| 77d2cfb3d1ff5bf7 | SCA Check 34658: Ensure 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)' is set to 'Disabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| c84951ff647f212c | SCA Check 34659: Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |
| e13a7586350a3c98 | SCA Check 34660: Ensure 'MSS: (ScreenSaverGracePeriod) The time in seconds before the screen saver grace period expires (0 recommended)' is set to 'Enabled: 5 or fewer seconds'. Policy: CIS Microsoft… | wazuh-sca |
| 45e4b54175ccb6c0 | SCA Check 34661: Ensure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'. Policy: CIS Microsoft Windows Server 2012 (non-R2)… | wazuh-sca |
| 9213b1a93161014a | SCA Check 34662: Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark… | wazuh-sca |
| 0eddb476c98d8021 | SCA Check 34663: Ensure 'MSS: (WarningLevel) Percentage threshold for the security event log at which the system will generate a warning' is set to 'Enabled: 90% or less'. Policy: CIS Microsoft… | wazuh-sca |
| 00f722197c962971 | SCA Check 34664: Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0.… | wazuh-sca |
| be3a9db2994a761d | SCA Check 34665: Ensure 'Turn off multicast name resolution' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| ac806f4a4013f395 | SCA Check 34666: Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| 1e46cc32e3ef7e0d | SCA Check 34667: Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| 043fda278edc1001 | SCA Check 34668: Ensure 'Turn off Microsoft Peer-to-Peer Networking Services' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| ad46fe9a6bd80716 | SCA Check 34669: Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark… | wazuh-sca |
| 8c46bc10706e9ff6 | SCA Check 34670: Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 (non-R2) Benchmark v3.0.0. Tactics:… | wazuh-sca |