Good article in the 02-18-08 issue of Government Computer News on implementing the Federal Desktop Core Configuration (FDCC). This all reminds of my times working on the NASA ODIN program and the standard Windows 2000/XP images my team built for some five NASA Centers. Even though the Centers were all supposed to use the same software, that didn’t happen and we ended up creating a “standard” image for each Center. We wanted to implement the Center for Internet Security (CIS) standards on those images but that was beyond the pale. I believe NASA had embarked on a project to implement the CIS standards but I have no idea where that went. We did implement those standards on the images we built for our internal consumption as well as on a project for North Carolina.
Tenable posted a blog entry today, Testing Windows Vista systems for FDCC compliance with Nessus, which is a follow-up to blog post which showed how Nessus Direct Feed and Security Center users could audit Windows XP Pro systems against FDCC compliance settings. In this blog entry, they show how this can also be accomplished for Windows Vista systems.