API → UI component mappings · 90,813 documents
| ID | Document | Source |
|---|---|---|
| be73109e4a23c445 | SCA Check 27328: Ensure 'Do not use temporary folders per session' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046',… | wazuh-sca |
| cc783124aa5c6887 | SCA Check 27329: Ensure 'Prevent downloading of enclosures' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0001', 'TA0002'] Techniques: ['T1566',… | wazuh-sca |
| b6d795e6f38e7850 | SCA Check 27330: Ensure 'Allow Cloud Search' is set to 'Enabled: Disable Cloud Search'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564']… | wazuh-sca |
| 49f5b5610439ec30 | SCA Check 27331: Ensure 'Allow indexing of encrypted files' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1119',… | wazuh-sca |
| 00a8516fd23bef58 | SCA Check 27332: Ensure 'Allow search highlights' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087'] This… | wazuh-sca |
| 302fa79b9cf8693e | SCA Check 27333: Ensure 'Turn off KMS Client Online AVS Validation' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564']… | wazuh-sca |
| c06e809095dff047 | SCA Check 27334: Ensure 'Configure Windows Defender SmartScreen' is set to 'Enabled: Warn and prevent bypass'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0002', 'TA0005']… | wazuh-sca |
| 69e81c59d5f47ae1 | SCA Check 27335: Ensure 'Allow suggested apps in Windows Ink Workspace' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| f202e02163ac9211 | SCA Check 27336: Ensure 'Allow Windows Ink Workspace' is set to 'Enabled: On, but disallow access above lock' OR 'Enabled: Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0… | wazuh-sca |
| c31b26e4dc8f9184 | SCA Check 27337: Ensure 'Allow user control over installs' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This… | wazuh-sca |
| ffc77ebeb435c6de | SCA Check 27338: Ensure 'Always install with elevated privileges' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| ae694ec99d5c8bdd | SCA Check 27339: Ensure 'Prevent Internet Explorer security prompt for Windows Installer scripts' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005']… | wazuh-sca |
| 14f675f8a708a28a | SCA Check 27340: Ensure 'Enable MPR notifications for the system' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564']… | wazuh-sca |
| 1baeff339f64348c | SCA Check 27341: Ensure 'Sign-in and lock last interactive user automatically after a restart' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 808381a708410482 | SCA Check 27342: Ensure 'Turn on PowerShell Script Block Logging' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005', 'TA0006', 'TA0007'] Techniques:… | wazuh-sca |
| 1f553a7141e011ec | SCA Check 27343: Ensure 'Turn on PowerShell Transcription' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques: ['T1595', 'T1046', 'T1087']… | wazuh-sca |
| dc8fc93d3cf232a7 | SCA Check 27344: Ensure 'Allow Basic authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 3d447b86999ff131 | SCA Check 27345: Ensure 'Allow unencrypted traffic' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 51c365d3bafe71f0 | SCA Check 27346: Ensure 'Disallow Digest authentication' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 39aa926f63fd9fdb | SCA Check 27347: Ensure 'Allow Basic authentication' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 15701834a851b185 | SCA Check 27348: Ensure 'Allow remote server management through WinRM' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036',… | wazuh-sca |
| b20d9116a0ce800d | SCA Check 27349: Ensure 'Allow unencrypted traffic' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010'] Techniques: ['T1005', 'T1025',… | wazuh-sca |
| 94606385eb440bbc | SCA Check 27350: Ensure 'Disallow WinRM from storing RunAs credentials' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0004', 'TA0005'] Techniques:… | wazuh-sca |
| 78e190142f4e2665 | SCA Check 27351: Ensure 'Allow Remote Shell Access' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy… | wazuh-sca |
| be1957703c01cf0c | SCA Check 27352: Ensure 'Prevent users from modifying settings' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0002', 'TA0005'] Techniques: ['T1562',… | wazuh-sca |
| 98b8d7d022e35581 | SCA Check 27353: Ensure 'No auto-restart with logged on users for scheduled automatic updates installations' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 2aeb12af4043a89f | SCA Check 27354: Ensure 'Configure Automatic Updates' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0043', 'TA0007'] Techniques: ['T1595', 'T1190',… | wazuh-sca |
| 4fed15c541aa8742 | SCA Check 27355: Ensure 'Configure Automatic Updates: Scheduled install day' is set to '0 - Every day'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0043', 'TA0007']… | wazuh-sca |
| 2a644873439a0d06 | SCA Check 27356: Ensure 'Manage preview builds' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] This policy setting… | wazuh-sca |
| 18b5a19a7f7b8ccb | SCA Check 27357: Ensure 'Select when Preview Builds and Feature Updates are received' is set to 'Enabled: 180 or more days'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| b6e4835a0c27ca48 | SCA Check 27358: Ensure 'Select when Quality Updates are received' is set to 'Enabled: 0 days'. Policy: CIS Microsoft Windows Server 2022 Benchmark v2.0.0 Tactics: ['TA0043', 'TA0007'] Techniques:… | wazuh-sca |
| ee5b50ce0c76ee71 | SCA Check 16500: Ensure 'Maximum password age' is set to '365 or fewer days, but not 0'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| 5fc8daa498aa6863 | SCA Check 16501: Ensure 'Minimum password age' is set to '1 or more day(s)'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078', 'T1098',… | wazuh-sca |
| 19ee78639c8a6710 | SCA Check 16502: Ensure 'Minimum password length' is set to '14 or more character(s)'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| 9e7eb51ee2004ba3 | SCA Check 16503: Ensure 'Account lockout duration' is set to '15 or more minute(s)'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques: ['T1078',… | wazuh-sca |
| 100a4b7676dcfbe9 | SCA Check 16504: Ensure 'Account lockout threshold' is set to '5 or fewer invalid logon attempt(s), but not 0'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006',… | wazuh-sca |
| 2a7f4eb51e0e6d6b | SCA Check 16505: Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0006', 'TA0003'] Techniques:… | wazuh-sca |
| e773a921c0f7ccd3 | SCA Check 16506: Ensure 'Accounts: Block Microsoft accounts' is set to 'Users can't add or log on with Microsoft accounts'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| 1655b81323567b87 | SCA Check 16507: Ensure 'Accounts: Guest account status' is set to 'Disabled' (MS only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564']… | wazuh-sca |
| b8000c4a13be0ef8 | SCA Check 16508: Ensure 'Accounts: Limit local account use of blank passwords to console logon only' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| bbaca14c65e32e91 | SCA Check 16509: Configure 'Accounts: Rename administrator account'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The built-in local… | wazuh-sca |
| 3b5858202e826b09 | SCA Check 16510: Configure 'Accounts: Rename guest account'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0005'] Techniques: ['T1036', 'T1564'] The built-in local guest… | wazuh-sca |
| d40f03ff4b3915ed | SCA Check 16511: Ensure 'Audit: Force audit policy subcategory settings (Windows Vista or later) to override audit policy category settings' is set to 'Enabled'. Policy: CIS Microsoft Windows Server… | wazuh-sca |
| 2f27254ab7a1f466 | SCA Check 16512: Ensure 'Audit: Shut down system immediately if unable to log security audits' is set to 'Disabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0005',… | wazuh-sca |
| 20371703634d50ec | SCA Check 16513: Ensure 'Devices: Allowed to format and eject removable media' is set to 'Administrators'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0009', 'TA0010']… | wazuh-sca |
| 715448581540c184 | SCA Check 16514: Ensure 'Devices: Prevent users from installing printer drivers' is set to 'Enabled'. Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007'] Techniques:… | wazuh-sca |
| 45b8f36967737d05 | SCA Check 16515: Ensure 'Domain controller: Allow server operators to schedule tasks' is set to 'Disabled' (DC only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0007']… | wazuh-sca |
| ad626366b7f7470a | SCA Check 16516: Ensure 'Domain controller: Allow vulnerable Netlogon secure channel connections' is set to 'Not Configured' (DC Only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0… | wazuh-sca |
| 8e03452c8a450a46 | SCA Check 16517: Ensure 'Domain controller: LDAP server channel binding token requirements' is set to 'Always' (DC Only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics:… | wazuh-sca |
| ed81630081fb4798 | SCA Check 16518: Ensure 'Domain controller: LDAP server signing requirements' is set to 'Require signing' (DC only). Policy: CIS Microsoft Windows Server 2019 Benchmark v2.0.0 Tactics: ['TA0009',… | wazuh-sca |