Check: 3.127
Win2k8 Audit:
3.127
(in version v6 r1.22)
Title
IPSec Exemptions are limited. (Cat III impact)
Discussion
This check verifies that Windows is configured to limit IPSec exemptions.
Check Content
Fix Text
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “MSS: (NoDefaultExempt) Configure IPSec exemptions for various types of network traffic” to “Only ISAKMP is exempt (recommended for Windows Server 2003)”.
Additional Identifiers
Rule ID: SV-16835r1_rule
Vulnerability ID: V-14232
Group Title: IPSec Exemptions
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |