Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Product Name

CIS-CAT Pro Assessor v4

Product Version

All

Date



Problem

Info

The group policy that is intended to remediate the security concerns for the Administrative Templates (User) section as reported by CIS-CAT do not appear to update unless the CIS-CAT service account (ad\sa-ciscat) has been logged onto the server directly, then had the group policy apply (gpupdate /force) and then the CIS-CAT collection run again.

Is there any way to avoid having to go through the process of signing into each and every server with the service account to have these remediations reflect in the CIS-CAT report?

Solution

this This is expected behavior that can’t be controlled by CISCATCIS-CAT. On Windows, user policies will only take effect when a user logs on that is part of a group that receives those policies. So you You won’t get updated in any of the hives (which is what Assessor actually looks at) until one of those users logs on

Note

Highlight important information

Keywords;

A hive is a logical group of keys, subkeys, and values in the registry that has a set of supporting files loaded into memory when the operating system is started or a user logs in.

Keywords; Administrative Templates Windows Policy

Content by Label

Filter by label (Content by label)
showLabelsfalse
showSpacefalse
cqllabel = "sbp_fer"

Copyright © 2020

Center for Internet Security®


Page Properties
hiddentrue

Action

Name(s)

Date

Linked ticket

Jira Legacy
serverSystem JIRA
serverIdb90ca2a8-9df7-3869-89db-c424866c1b16
keySUPPORT-25045

Created by

Nick Romanzo

Reviewed by

Approved by

Remove by