Per PCI we are a Level 2 corporation and I've been tasked with a part of trying to get our systems "PCI Compliant". Specifically I am working on the unneccesary services section. The following services are stated that they should be disabled:
CiSvc
helpsvc*
HTTPFilter*
Mnmsrvc*
Netman
RasAuto*
RasMan*
RDSessMgr*
RemoteRegistry
RpcLocator
Spooler
TapiSrv*
TermService*
WZCSVC*
Some of these I can't disable right away like the Spooler because of issues our users would have in the field. The ones with Asteriks by them are the ones I'm ready to disable. Do you know if there is a selection to do these within GPO or will I need to write a script to do this? We're trying to stay away from scripts as we just took about 3 months to convert our scripts to GPO where possible to clean up our logon processes.
Start Free Trial
