Windows Firewall STIG and Advanced Security STIG Ver 2, Rel 2 Checklist Details (Checklist Revisions)
SCAP 1.2 Content:
-
Download SCAP 1.2 Content - Microsoft Windows Defender Firewall with Advanced Security STIG Benchmark - Ver 2, Rel 3
- Author: Defense Information Systems Agency
Supporting Resources:
-
Download Standalone XCCDF 1.1.4 - Microsoft Windows Defender Firewall with Advanced Security STIG - Ver 2, Rel 2
- Defense Information Systems Agency
-
Download GPOs - Group Policy Objects (GPOs) - October 2024
- Defense Information Systems Agency
-
Download Automated Content - SCC 5.10.1 Windows
- Defense Information Systems Agency
Target:
Target | CPE Name |
---|---|
windows firewall | cpe:/a:microsoft:windows_firewall (View CVEs) |
Checklist Highlights
- Checklist Name:
- Windows Firewall STIG and Advanced Security STIG
- Checklist ID:
- 686
- Version:
- Ver 2, Rel 2
- Type:
- Compliance
- Review Status:
- Final
- Authority:
- Governmental Authority: Defense Information Systems Agency
- Original Publication Date:
- 04/28/2017
Checklist Summary:
The Windows Firewall with Advanced Security Security Technical Implementation Guide (STIG) is published as a tool to improve the security of Department of Defense (DoD) information systems. Starting with Windows Vista and Windows Server 2008, Microsoft included the Windows Firewall with Advanced Security, which provides significant enhancements over the previous Windows Firewall. This document provides guidance specifically for Windows Firewall with Advanced Security. Other firewall products that may be used will be addressed elsewhere.
Checklist Role:
- Firewall
Known Issues:
Not Provided
Target Audience:
This document is a requirement for all DoD administered systems and all systems connected to DoD networks. These requirements are designed to assist Security Managers (SMs), Information Assurance Managers (IAMs), Information Assurance Officers (IAOs), and System Administrators (SAs) with configuring and maintaining security controls. This guidance supports DoD system design, development, implementation, certification, and accreditation efforts.
Target Operational Environment:
- Managed
- Specialized Security-Limited Functionality (SSLF)
Testing Information:
Not Provided
Regulatory Compliance:
DoD Directive (DoDD) 8500.1
Comments/Warnings/Miscellaneous:
Comments or proposed revisions to this document should be sent via e-mail to the following address: disa.stig_spt@mail.mil. DISA Field Security Operations (FSO) will coordinate all change requests with the relevant DoD organizations before inclusion in this document.
Disclaimer:
Not Provided
Product Support:
Not Provided
Point of Contact:
disa.stig_spt@mail.mil
Sponsor:
Not Provided
Licensing:
Not Provided
Change History:
Updated STIG to v1, r5 - 10/28/2016 updated to FINAL - 12/07/2016 Updated to version 1, release 6 - 04/28/2017 Updated to FINAL - 05/30/2017 null Updated URL to reflect change to the DISA website - http --> https Updated to FINAL - 09/07/2017 updated to v1,r7 - 4/25/18 Updated to FINAL - 5/25/18 Updated benchmark - 7/31/2018 Added GPOs - 8/6/18 Updated to FINAL - 9/6/2018 Updated GPO Resource - 11/29/2018 Corrected SHA for GPO file - 12/19/2018 Updated URLs - 6/12/19 Updated GPO file - 10/31/19 Updated GPO file per DISA - 1/29/2020 Updated GPO file per DISA - 2/3/2020 updated GPO file - 3/6/2020 updated resource title per DISA - 3/12/2020 updated GPO file - 4/27/2020 Updated GPO file per DISA - 7/7/2020 Updated GPO file per DISA --- 8/5/2020 updated GPO file - 10/29/2020 Updated GPO - 12/4/2020 Updated GPO per DISA - 1/28/21 Updated GPO per DISA - 3/1/21 added SCC links per DISA guidance - 4/20/2021 Updated GPO per DISA - 5/12/21 Updated resources per DISA - 5/25/21 Updated GPO - 8/9/21 null Updated GPO per DISA - 8/24/21 updated SCC tool per DISA - 9/16/2021 updated GPO files - 11/22/2021 Updated resources per DISA - 11/26/21 Updated GPO per DISA - 2/17/22 Updated GPO per DISA - 5/2/22 null Updated GPO per DISA - 5/29/22 null Updated SCC per DISA - 6/14/22 Updated GPO per DISA - 8/1/22 null SCC - 10/13/22 updated GPO file - 11/7/22 updated GPO file - 1/31/2023 updated SCC content - 2/3/2023 updated SCC content - 3/9/2023 Updated GPO per DISA - 5/1/23 updated URLs - 5/10/23 updated SCC content - 6/22/23 updated SHA - 7/27/23 Updated GPO per DISA - 7/31/23 Updated GPO per DISA - 8/21/23 Updated SCC per DISA - 9/21/23 Updated GPO per DISA - 11/2/23 corrected title - 11/9/2023 updated GPO package - 1/31/24 SHA - 2/7/24 Updated SCC Resources - 4/19/24 Updated Resources - 06/10/2024 Resource Updated - 08/27/2024 Updated SCC and GPO Resources - 12/09/24
Dependency/Requirements:
URL | Description |
---|
References:
Reference URL | Description |
---|