TOC & Recently Viewed

Recently Viewed Topics

Items

“Items” are check types that are predefined in the Windows Compliance Checks Engine. They are used for commonly audited items and minimize the syntax required for audit check creation. An item has the following structure:

<item>

name: ["predefined_entry"]

value: [value]

</item>

The name field must have a name that is already defined (predefined names are listed in “Predefined policies” table below).

All predefined items correspond to the list available in the Domain Policy Editor on Windows 2003 SP1.

The following example checks if the minimum password length is between 8 and 14 characters:

<item>

name: "Minimum password length"

value: [8..14]

</item>

The corresponding custom item is:

<custom_item>

type: PASSWORD_POLICY

description: "Minimum password length"

value_type: POLICY_DWORD

value_data: [8..14]

password_policy: MINIMUM_PASSWORD_LENGTH

</custom_item>

This section includes the following information:

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.