Microsoft Windows Server 2022
Windows Server 2022 must not have the Fax Server role installed
STIG ID:
WN22-00-000320
|
SRG:
SRG-OS-000095-GPOS-00049
|
Severity:
Medium
|
CCI:
CCI-000381
|
Vulnerability ID:
V-254269
Description
Unnecessary services increase the attack surface of a system. Some of these services may not support required levels of authentication or encryption or may provide unauthorized access to the system.
Check
C-57754r848621_chk
Open "PowerShell".Enter "Get-WindowsFeature | Where Name -eq Fax".If "Installed State" is "Installed", this is a finding.An Installed State of "Available" or "Removed" is not a finding.
Fix
F-57705r848622_fix
Uninstall the "Fax Server" role.Start "Server Manager".Select the server with the role.Scroll down to "ROLES AND FEATURES" in the right pane.Select "Remove Roles and Features" from the drop-down "TASKS" list.Select the appropriate server on the "Server Selection" page and click "Next".Deselect "Fax Server" on the "Roles" page.Click "Next" and "Remove" as prompted.