CIS_Microsoft_Windows_Server_2008_R2_Benchmark_v3.0.1.pdf下载

Windows server 2008 安全加固 Table of Contents Overview ............................................................................................................................................................... 21 Intended Audience ........................................................................................................................................ 21 Consensus Guidance ..................................................................................................................................... 21 Typographical Conventions ...................................................................................................................... 22 Scoring Information ..................................................................................................................................... 22 Profile Definitions ......................................................................................................................................... 23 Acknowledgements ...................................................................................................................................... 25 Recommendations ............................................................................................................................................. 26 1 Account Policies ......................................................................................................................................... 26 1.1 Password Policy ................................................................................................................................. 26 1.1.1 (L1) Ensure 'Enforce password history' is set to '24 or more password(s)' (Scored) ................................................................................................................................................... 26 1.1.2 (L1) Ensure 'Maximum password age' is set to '60 or fewer days, but not 0' (Scored) ................................................................................................................................................... 29 1.1.3 (L1) Ensure 'Minimum password age' is set to '1 or more day(s)' (Scored) ..... 31 1.1.4 (L1) Ensure 'Minimum password length' is set to '14 or more character(s)' (Scored) ................................................................................................................................................... 33 1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled' (Scored) ................................................................................................................................................... 35 1.1.6 (L1) Ensure 'Store passwords using reversible encryption' is set to 'Disabled' (Scored) ................................................................................................................................................... 38 1.2 Account Lockout Policy ................................................................................................................... 40 1.2.1 (L1) Ensure 'Account lockout duration' is set to '15 or more minute(s)' (Scored) ................................................................................................................................................... 40 1.2.2 (L1) Ensure 'Account lockout threshold' is set to '10 or fewer invalid logon attempt(s), but not 0' (Scored) ....................................................................................................... 42 1.2.3 (L1) Ensure 'Reset account lockout counter after' is set to '15 or more minute(s)' (Scored) ............................................................................................................................. 44 2 Local Policies ............................................................................................................................................... 46 2.1 Audit Policy .......................................................................................................................................... 46