1bb127e7-c293-41f4-a937-c9c76d35cb8a
Improper access permissions for directory data-related files could allow unauthorized users to read, modify, or delete directory data or audit trails. Satisfies: SRG-OS-000324-GPOS-00125, SRG-OS-000206-GPOS-00084
Maintain the permissions on NTDS database and log files as follows:
NT AUTHORITY\SYSTEM:(I)(F)
BUILTIN\Administrators:(I)(F)
(I) - permission inherited from parent container
(F) - full access
STIG: Server:
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2024-06-14/finding/V-254391
2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2024-06-14/finding/V-205739 / https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93029
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2024-02-21/finding/V-224970 / https://www.stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73369
NIST 800-53: AC-6(10), SI-11b
NIST 800-171 Rev2: 3.1.7
NIST 800-171 Rev3: 03.01.07.a
NIST 800-171A: 3.1.7[a], 3.1.7[b], 3.1.7[c], 3.1.7[d]
NIST 800-171A Rev3: A.03.01.07.a
OWASP Top10 v2021: A01:2021
CAT: I
Shared Assessments SIG 2024: H.10
CCI: CCI-001314, CCI-002235
Rule-ID:SV-254391r958726_rule
STIG-ID:WN22-DC-000070
Vuln-ID: V-73369, V-224970, V-93029, V-205739, V-254391
CMMC v2 L2: AC.L2-3.1.7
CMMC V2.1 L2: AC.L2-3.1.7
CSA CMM v4: IAM-09
MITRE Att&ck:: T1098, T1069.002