Configure a Registry Key Existence Control (Windows)

Identify this control

The statement you provide is like the control name that describes what it is and how it should be implemented in the environment. You need to decide which category the control belongs to. This is important because users can search and filter controls by category, they can also search by keywords in the statement.

What are the Scan Parameters?

The scan parameters are used to gather data needed for compliance evaluation at scan time.

Click Add Parameters, and make these settings:

Registry Hive - This is the registry hive containing the registry key to be evaluated.

Registry Key - This is the registry key to be evaluated.

Tell me about Control Technologies

Your control may apply to many technologies. Select each technology you are interested in and provide a rationale statement and expected value.

If you plan to enter the same settings for each technology you only need to do it once. Make your selections in the "Default Values for Control Technologies" section first and then select the check box for each technology you want. you can view that the settings get copied automatically to each technology that you select.

Make these settings:

Rationale - Enter a rationale statement describing how the control should be implemented for each technology.

Default Value. Select the default expected value (True or False) for each technology. You can lock the value if you do not want users to be able to change the value in the Policy Editor.

Tell me about references

Add up to 10 references for the control. These may be references to internal policies, documents and web sites. For each reference, enter a description, a URL or both. When providing a URL, you must start the URL with http://, https:// or ftp://.  For example, enter http://www.qualys.com to link to the Qualys web site. Once added users have the option to include references in policy reports