Custom Items

A custom item is a complete check defined on the basis of the keywords defined above. The following is a list of available custom item types. Each check starts with a <custom_item> tag and ends with </custom_item>. Enclosed within the tags are lists of one or more keywords that are interpreted by the compliance check parser to perform the checks.

Custom audit checks may use </custom_item> and </item> interchangeably for the closing tag.

This section includes the following information:

• ANONYMOUS_SID_SETTING
• AUDIT_ALLOWED_OPEN_PORTS
• AUDIT_DENIED_OPEN_PORTS
• AUDIT_EXCHANGE
• AUDIT_FILEHASH_POWERSHELL
• AUDIT_IIS_APPCMD
• AUDIT_POLICY
• AUDIT_POLICY_SUBCATEGORY
• AUDIT_POWERSHELL
• AUDIT_PROCESS_ON_PORT
• AUDIT_USER_TIMESTAMPS
• BANNER_CHECK
• CHECK_ACCOUNT
• CHECK_LOCAL_GROUP
• FILE_AUDIT
• FILE_CHECK
• FILE_CONTENT_CHECK
• FILE_CONTENT_CHECK_NOT
• FILE_PERMISSIONS
• FILE_VERSION
• GROUP_MEMBERS_POLICY

• GUID_REGISTRY_SETTING

• KERBEROS_POLICY
• LOCKOUT_POLICY
• PASSWORD_POLICY
• REG_CHECK
• REGISTRY_AUDIT
• REGISTRY_PERMISSIONS
• REGISTRY_SETTING
• REGISTRY_TYPE
• SERVICE_AUDIT
• SERVICE_PERMISSIONS
• SERVICE_POLICY
• USER_GROUPS_POLICY
• USER_RIGHTS_POLICY
• WMI_POLICY