[BESAdmin-Announcements] Maintenance Update for DISA Windows Checklists - 9/8/2011

[Announcements for BES Administrators]

IBM Tivoli Endpoint Manager for Security and Compliance 

Security Configuration Management (SCM)

The Security and Compliance team at IBM has modified the content within 
the DISA Checklists.

---- Affected Sites ----

DISA STIG on Windows 2003 DC v6r1.18 -- now version 5
DISA STIG on Windows 2003 MS v6r1.18 -- now version 6
DISA STIG on Windows 2008 DC v6r1.11 -- now version 4
DISA STIG on Windows 2008 MS v6r1.11 -- now version 4
DISA STIG on Windows 7 v1r2 -- now version 19
DISA STIG on Windows Vista v6r1.18 -- now version 5
DISA STIG on Windows XP v6r1.18 -- now version 5

---- Changelist ----
- Precedence logic added for audit policy settings for when GPO's are 
applied (Bug #44661)
- Added note in 3 account lockout checks "The account lockout duration and 
reset lockout count settings will be ignored by Windows unless the account 
lockout threshold setting has been enabled." (Bug #44764)
- Changed logic for when tftp.exe is not present. Now when tftp.exe is not 
present will report compliant instead of not compliant. (Bug #44799)

Please contact IBM Tivoli Endpoint Manager Technical Support if you have 
any questions regarding this update.

We hope you find this latest release of SCM content useful and effective. 
Thank you!

  -- The Tivoli Endpoint Manager for Security and Compliance product team
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://bigmail.bigfix.com/pipermail/besadmin-announcements/attachments/20110907/64ebfca7/attachment.htm