You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
144 lines
4.8 KiB
144 lines
4.8 KiB
<?xml version="1.0"?>
|
|
<SCEAnalysisData xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="schema.xsd">
|
|
<!-- This is only a sample XML for the Analysis Data generated by the SCE Engine -->
|
|
<!-- The XSD Schema for this is SCE-Analysis.xsd -->
|
|
<Description>
|
|
<Name> SCE Analysis Data </Name>
|
|
<DisplayName> Security Configuration Engine Core OS Security Analysis Data </DisplayName>
|
|
<AnalysisDate>2001-12-31</AnalysisDate>
|
|
<AnalysisTime>13:20:00</AnalysisTime>
|
|
<Version>1</Version>
|
|
</Description>
|
|
<SystemAccess>
|
|
<Setting>
|
|
<!-- Steven: Name should be the same as what the Security Templates snapin generates when the setting is chosen -->
|
|
<Name> PasswordHistorySize </Name>
|
|
<!-- Steven: DisplayName should be the same (also localized) as what the Security Templates snapin shows for this setting -->
|
|
<!-- Steven: Unit can be gleaned from the Security Templates snapin -->
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>false</Match>
|
|
<BaselineValue> 10 </BaselineValue>
|
|
<SystemValue> 15 </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</SystemAccess>
|
|
<SystemLog>
|
|
<Setting>
|
|
<Name> MaximumLogSize </Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>true</Match>
|
|
<BaselineValue>16384 </BaselineValue>
|
|
<SystemValue> 16384 </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
<Setting>
|
|
<Name> MaximumLogSize2 </Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>true</Match>
|
|
<BaselineValue>16384 </BaselineValue>
|
|
<SystemValue> 16384 </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</SystemLog>
|
|
<SecurityLog>
|
|
<Setting>
|
|
<Name> MaximumLogSize </Name>
|
|
<AnalysisResult Unit="KiloBytes" Type="Scalar">
|
|
<Match>false</Match>
|
|
<BaselineValue> 16384 </BaselineValue>
|
|
<SystemValue> 16383 </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</SecurityLog>
|
|
<ApplicationLog>
|
|
<Setting>
|
|
<Name> MaximumLogSize </Name>
|
|
<AnalysisResult Unit="KiloBytes" Type="Scalar">
|
|
<Match>false</Match>
|
|
<BaselineValue> 16384 </BaselineValue>
|
|
<SystemValue> 16383 </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</ApplicationLog>
|
|
<EventAudit>
|
|
<Setting>
|
|
<Name> AuditAccountLogon </Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>false</Match>
|
|
<BaselineValue> TRUE </BaselineValue>
|
|
<SystemValue> FALSE </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</EventAudit>
|
|
<PrivilegeRights>
|
|
<Setting>
|
|
<Name> SeNetworkLogonRight </Name>
|
|
<AnalysisResult Unit="string" Type="Vector">
|
|
<Match>false</Match>
|
|
<BaselineValue>
|
|
<Account>*S-1-5-32-544</Account>
|
|
</BaselineValue>
|
|
<SystemValue>
|
|
<Account>*S-1-5-32-544</Account>
|
|
<Account>*S-1-5-32-545</Account>
|
|
</SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</PrivilegeRights>
|
|
<GroupMembership>
|
|
<Setting>
|
|
<Name> test__Members </Name>
|
|
<AnalysisResult Unit="string" Type="Vector">
|
|
<Match>true</Match>
|
|
<BaselineValue>
|
|
<Account>*S-1-5-32-544</Account>
|
|
</BaselineValue>
|
|
<SystemValue>
|
|
<Account>*S-1-5-32-544</Account>
|
|
</SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</GroupMembership>
|
|
<ServiceGeneralSetting>
|
|
<Setting>
|
|
<Name> CORRTSvc </Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>true</Match>
|
|
<BaselineValue>
|
|
<StartupType>2</StartupType>
|
|
<SecurityDescriptor>D:AR(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)(A;;CCLCSWLOCRRC;;;IU)S:(AU;FA;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;WD)</SecurityDescriptor>
|
|
</BaselineValue>
|
|
<SystemValue>
|
|
<StartupType>2</StartupType>
|
|
<SecurityDescriptor>D:AR(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;SY)</SecurityDescriptor>
|
|
</SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</ServiceGeneralSetting>
|
|
<RegistryValues>
|
|
<Setting>
|
|
<Name> MACHINE\System\CurrentControlSet\Control\Lsa\LimitBlankPasswordUse </Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>true</Match>
|
|
<BaselineValue> TRUE </BaselineValue>
|
|
<SystemValue> TRUE </SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
<Setting>
|
|
<Name>MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\AllocateCDRoms</Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>true</Match>
|
|
<BaselineValue>1,"0"</BaselineValue>
|
|
<SystemValue>1,"0"</SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
<Setting>
|
|
<Name> MACHINE\System\CurrentControlSet\Control\Lsa\LimitBlankPasswordUse </Name>
|
|
<AnalysisResult Unit="Unitless" Type="Scalar">
|
|
<Match>true</Match>
|
|
<BaselineValue>4,0</BaselineValue>
|
|
<SystemValue>4,0</SystemValue>
|
|
</AnalysisResult>
|
|
</Setting>
|
|
</RegistryValues>
|
|
</SCEAnalysisData>
|