UCF STIG Viewer Logo
Changes are coming to https://stigviewer.com. Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey

Software certificate installation files must be removed from a system.


Overview

Finding ID Version Rule ID IA Controls Severity
V-15823 WN12-GE-000020 SV-53141r2_rule ECSC-1 Medium
Description
Use of software certificates and their accompanying installation files for end users to access resources is less secure than the use of hardware-based certificates.
STIG Date
Windows Server 2012 / 2012 R2 Domain Controller Security Technical Implementation Guide 2015-06-16

Details

Check Text ( None )
None
Fix Text (F-46067r1_fix)
Remove any certificate installation files (*.p12 and *.pfx) found on a system.

This does not apply to server-based applications that have a requirement for .p12 certificate files (e.g., Oracle Wallet Manager).