CIS Compliance Content for Windows Server 2012 is updated to benchmark 2.2.0 in BSA 8.9
most of the rules from v2.1 are not included in the v2.2.
Where did you get that information?
Got the CIS ref number, and looks it changed in v2.1 & v2.2.
We have some servers where security policy value set in JP LNG. so Is their any way to use CIS template to check JP language settings?
I don't understand the question.
OS Language compliance is not part of CIS Compliance as far as I can tell from the Benchmark document
I think there are some settings that may show in japanese on a japanese server and the current templates may look only for the english text instead of japanese ?
Thanks Bill / Jim,
Yes current template includes only English text,
We have some JP servers with security policy value set in Japanese langue and hence getting the non-complaint result for all CIS rules.
Would be appreciate if get any help to analyze CIS rules for other language as well.
Ahh - clear now. The target is running Japanese version of Windows and some rules are failing
Which rules are failing?
I'm not 100% sure what language compatibility is provided by the CIS Benchmark.
If I look at the CIS Microsoft Windows Server 2012 R2 Benchmark v2.2.0 - 04-28-2016 I can see that in Rule 1.1.5 (L1) Ensure 'Password must meet complexity requirements' is set to 'Enabled' (Scored) it states that the compliance checks include:
- Contain characters from three of the following four categories:
- English uppercase characters (A through Z)
- English lowercase characters (a through z)
This makes me suspect that the benchmark is is not localised for Japanese language
Yes, looks like present CIS is supporting to ENG language only.