Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Policy must require that system administrators (SAs) be trained for the operating systems used by systems under their control.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36666 | WN08-00-000014 | SV-48283r1_rule | ECLP-1 | Medium |
| Description |
|---|
| If system administrators (SAs) are assigned to systems running operating systems for which they have no training, these systems are at additional risk of unintentional misconfiguration that may result in vulnerabilities or decreased availability of the system. |
| STIG | Date |
|---|---|
| Windows 8 Security Technical Implementation Guide | 2014-01-07 |
Details
| Check Text ( C-44961r1_chk ) |
|---|
| Review the list of SAs assigned to each system and compare this information to SA training records. If SAs are assigned to systems running operating systems for which there is no record of training, this is a finding. |
| Fix Text (F-41418r1_fix) |
|---|
| Establish site policy that requires SAs be trained for all operating systems running on systems under their control. |