API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 77e0e1861ec9d715 | SCA Check 16277: Ensure 'Prevent users and apps from accessing dangerous websites' is set to 'Enabled: Block'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0001', 'TA0002']… | wazuh-sca |
| 8858920f16faf997 | SCA Check 16278: Ensure 'Enable file hash computation feature' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1562', 'T1070',… | wazuh-sca |
| 8dbfc0d34908cbe6 | SCA Check 16279: Ensure 'Scan all downloaded files and attachments' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1027', 'T1221',… | wazuh-sca |
| dd6815c35ea36c75 | SCA Check 16280: Ensure 'Turn off real-time protection' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1027', 'T1221', 'T1562',… | wazuh-sca |
| d2d2a4bbb16bb906 | SCA Check 16281: Ensure 'Turn on behavior monitoring' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1562', 'T1070', 'T1059',… | wazuh-sca |
| 58585cf00ef8f9a3 | SCA Check 16282: Ensure 'Turn on script scanning' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1562', 'T1070', 'T1059', 'T1105']… | wazuh-sca |
| 2fe9217a512a9a12 | SCA Check 16283: Ensure 'Configure Watson events' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041', 'T1567',… | wazuh-sca |
| f79f1fb62728e2d5 | SCA Check 16284: Ensure 'Scan removable drives' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1562', 'T1070', 'T1059', 'T1105']… | wazuh-sca |
| 9b63660f2c458acc | SCA Check 16285: Ensure 'Turn on e-mail scanning' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1027', 'T1221', 'T1562', 'T1070',… | wazuh-sca |
| b8d4361bbee784a3 | SCA Check 16286: Ensure 'Configure detection for potentially unwanted applications' is set to 'Enabled: Block'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005']… | wazuh-sca |
| c4aa2ed276b32fe6 | SCA Check 16287: Ensure 'Turn off Microsoft Defender AntiVirus' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1562', 'T1070',… | wazuh-sca |
| 0d1edc3bd6229cea | SCA Check 16288: Ensure 'Prevent the usage of OneDrive for file storage' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1133',… | wazuh-sca |
| c107000e46e40a46 | SCA Check 16289: Ensure 'Turn off Push To Install service' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy setting… | wazuh-sca |
| 2100507b532762d5 | SCA Check 16290: Ensure 'Do not allow passwords to be saved' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1110', 'T1176',… | wazuh-sca |
| 99597c13f6c86683 | SCA Check 16291: Ensure 'Restrict Remote Desktop Services users to a single Remote Desktop Services session' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005']… | wazuh-sca |
| f2da5bce3adcd4d2 | SCA Check 16292: Ensure 'Do not allow COM port redirection' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy… | wazuh-sca |
| 3b2959cc199dfa65 | SCA Check 16293: Ensure 'Do not allow drive redirection' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy setting… | wazuh-sca |
| 4bd69fe080ebcf68 | SCA Check 16294: Ensure 'Do not allow LPT port redirection' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy… | wazuh-sca |
| afdfc75bfedae9f3 | SCA Check 16295: Ensure 'Do not allow supported Plug and Play device redirection' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595',… | wazuh-sca |
| 979882e0fca82f69 | SCA Check 16296: Ensure 'Always prompt for password upon connection' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087']… | wazuh-sca |
| 7f375758ae97b933 | SCA Check 16297: Ensure 'Require secure RPC communication' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This… | wazuh-sca |
| e55c113eaf38a314 | SCA Check 16298: Ensure 'Require use of specific security layer for remote (RDP) connections' is set to 'Enabled: SSL'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010']… | wazuh-sca |
| 7fa56a28e6a6e2fa | SCA Check 16299: Ensure 'Require user authentication for remote connections by using Network Level Authentication' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics:… | wazuh-sca |
| b96fe67c70992053 | SCA Check 16300: Ensure 'Set client connection encryption level' is set to 'Enabled: High Level'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005',… | wazuh-sca |
| b73996ae6a581ff7 | SCA Check 16301: Ensure 'Set time limit for active but idle Remote Desktop Services sessions' is set to 'Enabled: 15 minutes or less, but not Never (0)'. Policy: CIS Microsoft Windows Server 2016… | wazuh-sca |
| 781349448b232887 | SCA Check 16302: Ensure 'Set time limit for disconnected sessions' is set to 'Enabled: 1 minute'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1110',… | wazuh-sca |
| bcd0be34d1f48ea3 | SCA Check 16303: Ensure 'Do not delete temp folders upon exit' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This… | wazuh-sca |
| a5eb0f2ef8d258d5 | SCA Check 16304: Ensure 'Do not use temporary folders per session' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087']… | wazuh-sca |
| 7b98c8a8c5006aae | SCA Check 16305: Ensure 'Prevent downloading of enclosures' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0001', 'TA0002'] Techniques: ['T1566', 'T1534', 'T1059',… | wazuh-sca |
| 29118a64490b975d | SCA Check 16306: Ensure 'Allow Cloud Search' is set to 'Enabled: Disable Cloud Search'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy… | wazuh-sca |
| cf0a887def643a2b | SCA Check 16307: Ensure 'Allow indexing of encrypted files' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1119', 'T1530',… | wazuh-sca |
| ecb608cad9f3af85 | SCA Check 16308: Ensure 'Allow search highlights' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This policy… | wazuh-sca |
| c4f2dafcf62ef6cc | SCA Check 16309: Ensure 'Turn off KMS Client Online AVS Validation' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The Key… | wazuh-sca |
| 90d395d84eb30ea5 | SCA Check 16310: Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0002', 'TA0005']… | wazuh-sca |
| d568d042289b774d | SCA Check 16311: Ensure 'Allow suggested apps in Windows Ink Workspace' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| af8fe8c0c8b3f135 | SCA Check 16312: Ensure 'Allow Windows Ink Workspace' is set to 'Enabled: On, but disallow access above lock' OR 'Enabled: Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics:… | wazuh-sca |
| 8fd750abd547d27c | SCA Check 16313: Ensure 'Allow user control over installs' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This setting… | wazuh-sca |
| 5101c4e929db40da | SCA Check 16314: Ensure 'Always install with elevated privileges' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078', 'T1098',… | wazuh-sca |
| 71e9dd833cdcc7b2 | SCA Check 16315: Ensure 'Prevent Internet Explorer security prompt for Windows Installer scripts' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005']… | wazuh-sca |
| 06aacb806e5ed1f2 | SCA Check 16316: Ensure 'Sign-in and lock last interactive user automatically after a restart' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0006', 'TA0003']… | wazuh-sca |
| b2baff5946b10fad | SCA Check 16317: Ensure 'Turn on PowerShell Script Block Logging' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques: ['T1562',… | wazuh-sca |
| 5b948bb0633f4859 | SCA Check 16318: Ensure 'Turn on PowerShell Transcription' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This… | wazuh-sca |
| e519437e53b35bd8 | SCA Check 16319: Ensure 'Allow Basic authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| e33b009dd3827d50 | SCA Check 16320: Ensure 'Allow unencrypted traffic' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| 4cc35b5fda1477aa | SCA Check 16321: Ensure 'Disallow Digest authentication' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| ed7cd89e31bc0cf4 | SCA Check 16322: Ensure 'Allow Basic authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| 1d49098eb516b8af | SCA Check 16323: Ensure 'Allow remote server management through WinRM' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| 11b7b869eeb20557 | SCA Check 16324: Ensure 'Allow unencrypted traffic' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025', 'T1041',… | wazuh-sca |
| 9b1d108a7f258cfd | SCA Check 16325: Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0004', 'TA0005'] Techniques: ['T1133',… | wazuh-sca |
| b4dae3abd30af840 | SCA Check 16326: Ensure 'Allow Remote Shell Access' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2016 v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy setting… | wazuh-sca |