Unneeded user accounts, components, services and functionality of server applications are disabled or removed.
Topic
Hardening server application configurations
Applicable to
Non Classified, Official, Protected, Secret, Top Secret
History
Priority
should
Dec 2024
Unneeded user accounts, components, services and functionality of server applications are disabled or removed.
References to ‘accounts’ were changed to ‘user accounts’ in order to more closely match Microsoft Active Directory account types (i.e. ‘users’ and ‘computers’).
Mar 2023
Unneeded accounts, components, services and functionality of server applications are disabled or removed.
An existing control relating to unneeded accounts, components, services and functionality of DBMS software being disabled or removed was expanded to cover all server applications.
Mar 2022
Unneeded accounts, components, services and functionality of DBMS software are disabled or removed.
Miscellaneous changes were made to rationale and recommendations throughout the publication to clarify content without changing intent. This included a review from the Guidelines for System Hardening chapter through to the Guidelines for Data Transfers chapter.
2017
DBMS software features and stored procedures that are not required should be disabled orremoved.
Control Text Changed. No public explaination.
2015
Agencies should disable or remove DBMS software features and stored procedures that arenot required.