I have a situation .I have some server hardening policies defined and I want to create a custom policy on the same .
There are some controls defined in our organizational policy , which matches qualys control and these control can be added in the directly in the custom policy .
But few controls are not in the qulys control list , I have given some of the examples
1) File System must be formatted as NTFS
2) Enforce password history for 24 password
3) Allow log on locally only for administrators
Can some guide me how to create an xml file to create a policy with these controls .