API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| 59f37bf865d863bd | SCA Check 15118: Ensure 'Audit File Share' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 45774482ca3d753a | SCA Check 15119: Ensure 'Audit Other Object Access Events' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 19729d7abab142f3 | SCA Check 15120: Ensure 'Audit Removable Storage' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 494b37ef3d85ebb2 | SCA Check 15121: Ensure 'Audit Audit Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| a1cb53868942fc70 | SCA Check 15122: Ensure 'Audit Authentication Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 24db025aeb10a739 | SCA Check 15123: Ensure 'Audit Authorization Policy Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| f0fc4d57fff7e692 | SCA Check 15124: Ensure 'Audit MPSSVC Rule-Level Policy Change' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 4a43636c134bbe9e | SCA Check 15125: Ensure 'Audit Other Policy Change Events' is set to include 'Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| ddf2f153e41e5f68 | SCA Check 15126: Ensure 'Audit Sensitive Privilege Use' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| a425f591ce14c651 | SCA Check 15127: Ensure 'Audit IPsec Driver' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| fa3153ee28188e51 | SCA Check 15128: Ensure 'Audit Other System Events' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| e47b918d8107c7ad | SCA Check 15129: Ensure 'Audit Security State Change' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| c4dc691df9fc1ba9 | SCA Check 15130: Ensure 'Audit Security System Extension' is set to include 'Success'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007']… | wazuh-sca |
| 2954a05d2eeecf11 | SCA Check 15131: Ensure 'Audit System Integrity' is set to 'Success and Failure'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 87b1b2d21cd39e46 | SCA Check 15132: Ensure 'Prevent enabling lock screen camera' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046',… | wazuh-sca |
| f7613bbea4b9b67a | SCA Check 15133: Ensure 'Prevent enabling lock screen slide show' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046',… | wazuh-sca |
| e3d9a9bd99fd392d | SCA Check 15134: Ensure LAPS AdmPwd GPO Extension / CSE is installed (MS only). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| 1094648b4273e90f | SCA Check 15135: Ensure 'Do not allow password expiration time longer than required by policy' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics:… | wazuh-sca |
| 3439f55eb8cc2e44 | SCA Check 15136: Ensure 'Enable Local Admin Password Management' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| 5ecc0eddc0086ac6 | SCA Check 15137: Ensure 'Password Settings: Password Complexity' is set to 'Enabled: Large letters + small letters + numbers + special characters' (MS only). Policy: CIS Microsoft Windows Server 2012… | wazuh-sca |
| c00810da94c6ef34 | SCA Check 15138: Ensure 'Password Settings: Password Length' is set to 'Enabled: 15 or more' (MS only). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0006', 'TA0003']… | wazuh-sca |
| 6a078876839c2474 | SCA Check 15139: Ensure 'Password Settings: Password Age (Days)' is set to 'Enabled: 30 or fewer' (MS only). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 0d412daad3fb75c4 | SCA Check 15140: Ensure 'Apply UAC restrictions to local accounts on network logons' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 5478d878c7269141 | SCA Check 15141: Ensure 'Configure SMB v1 client driver' is set to 'Enabled: Disable driver (recommended)'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005']… | wazuh-sca |
| 4e87882106fd318d | SCA Check 15142: Ensure 'Configure SMB v1 server' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This setting… | wazuh-sca |
| 09b3db8bd1e056c3 | SCA Check 15143: Ensure 'Enable Structured Exception Handling Overwrite Protection (SEHOP)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0002',… | wazuh-sca |
| b3008de1d9d23a02 | SCA Check 15144: Ensure 'LSA Protection' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This policy… | wazuh-sca |
| b66b9b4420bbc4fd | SCA Check 15145: Ensure 'NetBT NodeType configuration' is set to 'Enabled: P-node (recommended)'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| 1bd9121fb1b23d48 | SCA Check 15146: Ensure 'WDigest Authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| b3664a1d7ab0ba68 | SCA Check 15147: Ensure 'MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0009',… | wazuh-sca |
| 9ff87b1d8d8b6a5a | SCA Check 15148: Ensure 'MSS: (EnableICMPRedirect) Allow ICMP redirects to override OSPF generated routes' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics:… | wazuh-sca |
| bb3413d17f903710 | SCA Check 15149: Ensure 'MSS: (KeepAliveTime) How often keep-alive packets are sent in milliseconds' is set to 'Enabled: 300,000 or 5 minutes (recommended)'. Policy: CIS Microsoft Windows Server 2012… | wazuh-sca |
| 8368a9e9f33bbfd1 | SCA Check 15150: Ensure 'MSS: (NoNameReleaseOnDemand) Allow the computer to ignore NetBIOS name release requests except from WINS servers' is set to 'Enabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| 605065a523bf8fe9 | SCA Check 15151: Ensure 'MSS: (PerformRouterDiscovery) Allow IRDP to detect and configure Default Gateway addresses (could lead to DoS)' is set to 'Disabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| 89781114db9c13d1 | SCA Check 15152: Ensure 'MSS: (SafeDllSearchMode) Enable Safe DLL search mode (recommended)' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0002',… | wazuh-sca |
| ba1094105a4c956e | SCA Check 15153: Ensure 'MSS: (TcpMaxDataRetransmissions IPv6) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark… | wazuh-sca |
| 2f348433c8afb210 | SCA Check 15154: Ensure 'MSS: (TcpMaxDataRetransmissions) How many times unacknowledged data is retransmitted' is set to 'Enabled: 3'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0… | wazuh-sca |
| 7dfc2c1d3ea11310 | SCA Check 15155: Ensure 'Configure NetBIOS settings' is set to 'Enabled: Disable NetBIOS name resolution on public networks'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics:… | wazuh-sca |
| 944bea1e8dea28fd | SCA Check 15156: Ensure 'Turn off multicast name resolution' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564']… | wazuh-sca |
| b51cd2c97e7f9e3d | SCA Check 15157: Ensure 'Turn on Mapper I/O (LLTDIO) driver' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564']… | wazuh-sca |
| 12c8c0c207fa7b6c | SCA Check 15158: Ensure 'Turn on Responder (RSPNDR) driver' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| 05c53a5992bdce0d | SCA Check 15159: Ensure 'Turn off Microsoft Peer-to-Peer Networking Services' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| f2a6ba100e42ec51 | SCA Check 15160: Ensure 'Prohibit installation and configuration of Network Bridge on your DNS domain network' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0… | wazuh-sca |
| ed5167798fa6b886 | SCA Check 15161: Ensure 'Require domain users to elevate when setting a network's location' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0007']… | wazuh-sca |
| 1232c72a2f3a6cd1 | SCA Check 15162: Disable IPv6 (Ensure TCPIP6 Parameter 'DisabledComponents' is set to '0xff (255)'). Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| c435c09247d0094c | SCA Check 15163: Ensure 'Configuration of wireless settings using Windows Connect Now' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005']… | wazuh-sca |
| 5bc3428ccbd44280 | SCA Check 15164: Ensure 'Prohibit access of the Windows Connect Now wizards' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0005'] Techniques:… | wazuh-sca |
| b46f3b0f6e7c15c6 | SCA Check 15165: Ensure 'Prohibit connection to non-domain networks when connected to domain authenticated network' is set to 'Enabled' (MS only). Policy: CIS Microsoft Windows Server 2012 R2… | wazuh-sca |
| 401b2e94cb6ca990 | SCA Check 15166: Ensure 'Allow Print Spooler to accept client connections' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |
| 303d30981ac366ca | SCA Check 15167: Ensure 'Configure Redirection Guard' is set to 'Enabled: Redirection Guard Enabled'. Policy: CIS Microsoft Windows Server 2012 R2 Benchmark v3.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |