Details
Backup Operators are able to read and write to any file in the system, regardless of the rights assigned to it. Backup and restore rights permit users to circumvent the file access restrictions present on NTFS disk drives for backup and restore purposes. Visibility of members of the Backup Operators group must be maintained.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Create the necessary documentation that identifies the members of the Backup Operators group.
Supportive Information
The following resource is also helpful.
- https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2012_and_2012_R2_MS_V3R3_STIG.zip
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.
References
- 800-53|CM-6b.
- CAT|II
- CCI|CCI-000366
- Rule-ID|SV-225245r569185_rule
- STIG-ID|WN12-00-000009-01
- STIG-Legacy|SV-52156
- STIG-Legacy|V-1168
- Vuln-ID|V-225245