STIGQter: STIG Summary: Active Directory Domain Security Technical Implementation Guide (STIG) Version: 2 Release: 13 Benchmark Date: 26 Apr 2019:

Windows service \ application accounts with administrative privileges and manually managed passwords, must have passwords changed at least every 60 days.

DISA Rule

SV-56889r2_rule

Vulnerability Number

V-44059

Group Title

AD.0014

Rule Version

AD.0014

Severity

CAT II

CCI(s)

• CCI-000199 - The information system enforces maximum password lifetime restrictions.

Weight

10

Fix Recommendation

If no Windows service \ application accounts with manually managed passwords have administrative privileges, this is NA.

Change passwords for Windows service \ application accounts with administrative privileges and manually managed passwords, at least every 60 days.

Check Contents

If no Windows service \ application accounts with manually managed passwords have administrative privileges, this is NA.

Verify Windows service \ application accounts with administrative privileges and manually managed passwords, have passwords changed at least every 60 days.

Vulnerability Number

V-44059

Documentable

False

Rule Version

AD.0014

Severity Override Guidance

If no Windows service \ application accounts with manually managed passwords have administrative privileges, this is NA.

Verify Windows service \ application accounts with administrative privileges and manually managed passwords, have passwords changed at least every 60 days.

Check Content Reference

M

Target Key

870

Comments