Policy must require that system administrators (SAs) be trained for the operating systems used by systems under their control.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| WN12-00-000006 | WN12-00-000006 | WN12-00-000006_rule | Medium |
| Description |
|---|
| If SAs are assigned to systems running operating systems for which they have no training, these systems are at additional risk of unintentional misconfiguration that may result in vulnerabilities or decreased availability of the system. |
| STIG | Date |
|---|---|
| Microsoft Windows Server 2012 Domain Controller Security Technical Implementation Guide | 2013-07-25 |
Details
| Check Text ( C-WN12-00-000006_chk ) |
|---|
| Review the list of SAs assigned to each system and compare this information to SA training records. If SAs are assigned to systems running operating systems for which there is no record of training, this is a finding. |
| Fix Text (F-WN12-00-000006_fix) |
|---|
| Establish site policy that requires SAs be trained for all operating systems running on systems under their control. |