Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-8316 | DS00.0120_2008 | SV-34432r5_rule | High |
Description |
---|
Improper access permissions for directory data related files could allow unauthorized users to read, modify, or delete directory data or audit trails. |
STIG | Date |
---|---|
Windows 2008 Domain Controller Security Technical Implementation Guide | 2017-07-28 |
Check Text ( None ) |
---|
None |
Fix Text (F-80449r1_fix) |
---|
Ensure the permissions on NTDS database and log files are at least as restrictive as the following: NT AUTHORITY\SYSTEM:(I)(F) BUILTIN\Administrators:(I)(F) (I) - permission inherited from parent container (F) - full access |