An error occurred:

Check: 2.119

Win7 Audit: 2.119 (in version v1 r16)

Title

Automatic Updates must not be used (unless configured to point to a DoD server). (Cat II impact)

Discussion

Uncontrolled system updates can introduce issues to a system. The system must be configured to prevent Automatic Updates from being run unless directed to a DoD Windows Server Update Services (WSUS) server.

Check Content

Fix Text

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Update -> "Configure Automatic Updates" to "Disabled". If the site is using a DoD WSUS server to distribute software updates, the policy setting to configure the WSUS URL is Computer Configuration -> Administrative Templates -> Windows Components -> Windows Update -> "Specify intranet Microsoft update service location".

Additional Identifiers

Rule ID: SV-25200r2_rule

Vulnerability ID: V-14250

Group Title: Configure Automatic Updates

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
No CCIs are assigned to this check

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
No controls are assigned to this check