Title

The Microsoft SCOM server must be running Windows operating system that supports modern security features such as virtualization based security. (Cat I impact)

Discussion

Network devices running older but supported operating systems lack modern security features that mitigate attack surfaces. Attackers face a higher level of complexity to overcome during a compromise attempt.

Check Content

Check the operating system version. From the SCOM management servers, type winver and press enter. If the operating system is not Windows Server 2016 or later, this is a finding.

Fix Text

Upgrade the network device to an operating that supports modern security features such as virtualization based security.

Additional Identifiers

Rule ID: SV-237432r643942_rule

Vulnerability ID: V-237432

Group Title: SRG-APP-000516-NDM-000351

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.