I think this is a small bug, in fact, there is a number mismatch with the CIS 3.0.0 repository.
Indeed, in your tool I have this
[+] ID 2.2.19, Debug programs, Result=BUILTIN\Administrateurs, Recommended=BUILTIN\Administrators, Severity=Passed
[$] ID 2.2.20, Deny access to this computer from the network (DC), Result=, Recommended=BUILTIN\Guests, Severity=Medium
[$] ID 2.2.21, Deny access to this computer from the network (Member), Result=, Recommended=BUILTIN\Guests;NT AUTHORITY\Local account and member of Administrators group, Severity=Medium
[$] ID 2.2.22, Deny log on as a batch job, Result=, Recommended=BUILTIN\Guests, Severity=Medium
[$] ID 2.2.23, Deny log on as a service, Result=, Recommended=BUILTIN\Guests, Severity=Medium
[$] ID 2.2.24, Deny log on locally, Result=, Recommended=BUILTIN\Guests, Severity=Medium
[$] ID 2.2.25, Deny log on through Remote Desktop Services (DC), Result=, Recommended=BUILTIN\Guests, Severity=Medium
[$] ID 2.2.26, Deny log on through Remote Desktop Services (Member), Result=, Recommended=BUILTIN\Guests;NT AUTHORITY\Local account, Severity=Medium
Hors dans le fichier du CIS
2.2.20 (L1) Ensure 'Debug programs' is set to 'Administrators' (Automated)
2.2.21 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests' (DC only) (Automated)
0x6d69636b
commented
2 months ago
Bonjour,
I think this is a small bug, in fact, there is a number mismatch with the CIS 3.0.0 repository. Indeed, in your tool I have this [+] ID 2.2.19, Debug programs, Result=BUILTIN\Administrateurs, Recommended=BUILTIN\Administrators, Severity=Passed [$] ID 2.2.20, Deny access to this computer from the network (DC), Result=, Recommended=BUILTIN\Guests, Severity=Medium [$] ID 2.2.21, Deny access to this computer from the network (Member), Result=, Recommended=BUILTIN\Guests;NT AUTHORITY\Local account and member of Administrators group, Severity=Medium [$] ID 2.2.22, Deny log on as a batch job, Result=, Recommended=BUILTIN\Guests, Severity=Medium [$] ID 2.2.23, Deny log on as a service, Result=, Recommended=BUILTIN\Guests, Severity=Medium [$] ID 2.2.24, Deny log on locally, Result=, Recommended=BUILTIN\Guests, Severity=Medium [$] ID 2.2.25, Deny log on through Remote Desktop Services (DC), Result=, Recommended=BUILTIN\Guests, Severity=Medium [$] ID 2.2.26, Deny log on through Remote Desktop Services (Member), Result=, Recommended=BUILTIN\Guests;NT AUTHORITY\Local account, Severity=Medium
Hors dans le fichier du CIS 2.2.20 (L1) Ensure 'Debug programs' is set to 'Administrators' (Automated) 2.2.21 (L1) Ensure 'Deny access to this computer from the network' to include 'Guests' (DC only) (Automated)
I must continue to use your numbering?