Home | Site Map | Cisco How ToNet How To | Wireless |Search | Forums | Services | Donations | Careers | About Us | Contact Us|

PCI check lists in Windows environment

Permissions, Group Policy, IPSec, Virus, Spam, Spyware, Malware.

PCI check lists in Windows environment

Postby chicagotech » Fri Feb 09, 2018 3:49 pm

The week of 2/4/2018 Operating System – Servers and workstations

Task 1: Microsoft Windows latest updates should be installed.

Task 2: Ensure the system is configured to disable automatic administrator login.

Task 3: The built in Administrator and Guest accounts should be renamed to something other an Administrator or Guest or disabled.

Task 4: The system screen saver settings should be configured to lock the screen as required by organizational or regulatory policy.


The week of 2/11/2018 - System Auditing –

Task 1: The Application, System, and Security Event log files should have ACLs set as follows: Administrators – Read and Execute. System – Full Control.

Task 2: Each partition/drive should be set to audit “Failures” for the Everyone group at a minimum.

Task 3: Configure the system to disallow guest access to the Event logs.

Task 4: The HKEY_LOCAL_MACHINE\SOFTWARE and HKEY_LOCAL_MACHINE\SYEM registry hives should have auditing set to record “Failures” for the everyone group at a minimum.

Task 5: The system event log size, and retention policy should be set to comply with organizational or regulatory requirements.
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
chicagotech
Site Admin
 
Posts: 7178
Joined: Mon Nov 27, 2006 1:24 pm
Location: Chicago USA

Return to Security

Your Ad Here

Who is online

Users browsing this forum: No registered users and 2 guests