CCE-36419-0| Platform: cpe:/o:microsoft:windows_server_2012::r2 | Date: (C)2015-10-08 (M)2023-07-04 |
Disable password strength validation for Peer Grouping
By default, when a Peer Group is created that allows for password-authentication (or the password for such a Group is changed), Peer Grouping validates that the password meets the password complexity requirements for the local system. Thus, it will not allow any passwords to be used for a Peer Group that are weaker than what would be allowed for a login password.
This setting controls this validation behavior. If set to 1, then this validation will not be performed and any password will be allowed. If set to 0, the validation will be performed.
Parameter:
[enable/disable]
Technical Mechanism:
(1) GPO: Computer ConfigurationAdministrative TemplatesNetworkMicrosoft Peer-to-Peer Networking Services!Disable password strength validation for Peer Grouping
(2) REG: HKEY_LOCAL_MACHINESoftwarepoliciesMicrosoftPeernet!IgnoreDomainPasswordPolicyForNewGroups
| CCSS Severity: | CCSS Metrics: |
| CCSS Score : 9.0 | Attack Vector: NETWORK |
| Exploit Score: 2.2 | Attack Complexity: HIGH |
| Impact Score: 6.0 | Privileges Required: NONE |
| Severity: CRITICAL | User Interaction: NONE |
| Vector: AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H | Scope: CHANGED |
| | Confidentiality: HIGH |
| | Integrity: HIGH |
| | Availability: HIGH |
| | |
References: | Resource Id | Reference |
|---|
| SCAP Repo OVAL Definition | oval:org.secpod.oval:def:27474 |
