Windows Configuration Audit Compliance File Reference

The basis for Windows .audit compliance files is a specially formatted text file. Entries in the file can invoke a variety of "custom item" checks such as registry setting checks, as well as more generic ones such as local security policy setting checks. Examples are used throughout this guide for clarification.

This section includes the following information:

• Value Data
• ACL Format
• Custom Items
• Items
• Forced Reporting
• Conditions

Check Type

All Windows compliance checks must be bracketed with the check_type encapsulation with the "Windows" designation and also specify version "2":

<check_type:"Windows" version:"2">

An example Windows compliance check can be seen in Appendix B, starting with the check_type setting for "Windows" and version "2", and is finished by the "</check_type>" tag.

This is required to differentiate Windows .audit files from those intended for Unix (or other platforms).