Recovery console: Allow automatic administrative logonID: oval:org.secpod.oval:def:34973 | Date: (C)2016-06-10 (M)2023-12-13 |
Class: COMPLIANCE | Family: windows |
This security setting determines if the password for the Administrator account must be given before access to the system is granted. If this option is enabled, the Recovery Console does not require you to provide a password, and it automatically logs on to the system.
Default: This policy is not defined and automatic administrative logon is not allowed.
Counter Measure:
Disable the Recovery Console: Allow automatic administrative logon setting.
Potential Impact:
Users will have to enter a user name and password to access the Recovery Console.
Fix:
(1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Recovery console: Allow automatic administrative logon
(2) REG: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Setup\RecoveryConsole!securitylevel
Platform: |
Microsoft Windows 10 |