CIS Microsoft Windows 10 Enterprise Release 1909 Benchmark

Default Value:

Success.

References:

1. CCE-35511-5

CIS Controls:

Version 6

5.8 Administrators Should Not Directly Log In To A System (i.e. use RunAs/sudo) Administrators should be required to access a system using a fully logged and non- administrative account. Then, once logged on to the machine without administrative privileges, the administrator should transition to administrative privileges using tools such as Sudo on Linux/UNIX, RunAs on Windows, and other similar facilities for other types of systems.

Version 7

6.3 Enable Detailed Logging Enable system logging to include detailed information such as an event source, date, user, timestamp, source addresses, destination addresses, and other useful elements.

16.6 Maintain an Inventory of Accounts Maintain an inventory of all accounts organized by authentication system.

461 | P a g e