UCF STIG Viewer Logo

Policy must require that system administrators (SAs) be trained for the operating systems used by systems under their control.


Overview

Finding ID Version Rule ID IA Controls Severity
V-225242 WN12-00-000006 SV-225242r569185_rule Medium
Description
If SAs are assigned to systems running operating systems for which they have no training, these systems are at additional risk of unintentional misconfiguration that may result in vulnerabilities or decreased availability of the system.
STIG Date
Microsoft Windows Server 2012/2012 R2 Member Server Security Technical Implementation Guide 2022-03-01

Details

Check Text ( C-26941r471068_chk )
Determine whether the site has a policy that requires SAs be trained for all operating systems running on systems under their control. If the site does not have a policy requiring SAs be trained for all operating systems under their control, this is a finding.
Fix Text (F-26929r471069_fix)
Establish site policy that requires SAs be trained for all operating systems running on systems under their control.