Search Results
byago
byago
byago
byago
byago
This script fixes the darwin CIS Benchmark check 35054: "Ensure the Sudo Timeout Period Is Set to Zero."
This script fixes the darwin CIS Benchmark check 35028: "Ensure Require Password After Screen Saver Begins or Display Is Turned Off Is Enabled for 5 Seconds or Immediately."
This script fixes the darwin CIS Benchmark check 35029: "Ensure a Custom Message for the Login Screen Is Enabled."
This script fixes the darwin CIS Benchmark check 35028: "Ensure Require Password After Screen Saver Begins or Display Is Turned Off Is Enabled for 5 Seconds or Immediately."
This script fixes the darwin CIS Benchmark check 35026: "Ensure Power Nap Is Disabled for Intel Macs."
This script fixes the darwin CIS Benchmark check 35022: "Ensure 'Show Location Icon in Control Center when System Services Request Your Location' Is Enabled."
This script fixes the windows CIS Benchmark check 18.10.9.1.7: "Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'."
• Creates HKLM\SOFTWARE\Policies\Microsoft\FVE if missing. • Writes/overwrites DWORD FDVActiveDirectoryBackup = 1 in BOTH registry views (Registry64 and Registry32). • Idempotent: rerunning simply re-applies the compliant value.
.\Set-BitLockerADBackupFixed.ps1This script fixes the windows CIS Benchmark check 18.10.9.1.7: "Ensure 'Choose how BitLocker-protected fixed drives can be recovered: Save BitLocker recovery information to AD DS for fixed data drives' is set to 'Enabled: False'."
• Creates HKLM\SOFTWARE\Policies\Microsoft\FVE if missing. • Writes/overwrites DWORD FDVActiveDirectoryBackup = 1 in BOTH registry views (Registry64 and Registry32). • Idempotent: rerunning simply re-applies the compliant value.
.\Set-BitLockerADBackupFixed.ps1This script fixes the windows CIS Benchmark check 18.10.9.1.1: "Ensure 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' is set to 'Disabled'."
• Creates HKLM\SOFTWARE\Policies\Microsoft\FVE if missing. • Creates/overwrites value FDVDiscoveryVolumeType with "" (empty string). • Writes to BOTH 64-bit and 32-bit registry views. • Idempotent: re-running simply re-applies the compliant state.
.\Disable-LegacyFixedDriveAccess.ps1This script fixes the windows CIS Benchmark check 18.10.9.1.1: "Ensure 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' is set to 'Disabled'."
• Creates HKLM\SOFTWARE\Policies\Microsoft\FVE if missing. • Creates/overwrites value FDVDiscoveryVolumeType with "" (empty string). • Writes to BOTH 64-bit and 32-bit registry views. • Idempotent: re-running simply re-applies the compliant state.
.\Disable-LegacyFixedDriveAccess.ps1