Search Results
byago
byago
byago
byago
byago
This script fixes the windows CIS Benchmark check 18.10.9.1.1: "Ensure 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' is set to 'Disabled'."
• Creates HKLM\SOFTWARE\Policies\Microsoft\FVE if missing. • Creates/overwrites value FDVDiscoveryVolumeType with "" (empty string). • Writes to BOTH 64-bit and 32-bit registry views. • Idempotent: re-running simply re-applies the compliant state.
.\Disable-LegacyFixedDriveAccess.ps1This script fixes the windows CIS Benchmark check 18.10.9.1.1: "Ensure 'Allow access to BitLocker-protected fixed data drives from earlier versions of Windows' is set to 'Disabled'."
• Creates HKLM\SOFTWARE\Policies\Microsoft\FVE if missing. • Creates/overwrites value FDVDiscoveryVolumeType with "" (empty string). • Writes to BOTH 64-bit and 32-bit registry views. • Idempotent: re-running simply re-applies the compliant state.
.\Disable-LegacyFixedDriveAccess.ps1This script fixes the windows CIS Benchmark check 18.10.9.1.10: "Ensure 'Configure use of hardware-based encryption for fixed data drives' is set to 'Disabled'."
This script fixes the windows CIS Benchmark check 18.10.9.1.11: "Ensure 'Configure use of passwords for fixed data drives' is set to 'Disabled'."
This script fixes the windows CIS Benchmark check 18.10.9.1.12: "Ensure 'Configure use of smart cards on fixed data drives' is set to 'Enabled'."
This script fixes the windows CIS Benchmark check 18.10.9.1.13: "Ensure 'Configure use of smart cards on fixed data drives: Require use of smart cards on fixed data drives' is set to 'Enabled: True'."