[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-41838-4

Platform: win10Date: (C)2016-09-23   (M)2022-10-10



Disable: 'Interactive logon: Require smart card' for scforceoption Microsoft recommends that you use this setting, if appropriate to your environment and your organization's business requirements, to help protect end user computers. This policy setting requires users to log on to a computer with a smart card. Note: This setting applies to Windows 2000 computers, but it is not available through the Security Configuration Manager tools on these computers. Counter Measure: For users with access to computers that contain sensitive data, issue smart cards to users and configure the Interactive logon: Require smart card setting to Enabled. Potential Impact: All users of a computer with this setting enabled will have to use smart cards to log onto the local computer, which means that the organization will need a reliable public key infrastructure (PKI) as well as smart cards and smart card readers for these users. These requirements are significant challenges, because expertise and resources are required to plan for and deploy these technologies. However, Windows Server includes Active Directory Certificate Services, a highly advanced service for implementing and managing certificates. When Certificate Services is combined with Windows 7, Windows 8.1, or Windows 10, features such as automatic user and computer enrollment and renewal become available. For more information about deploying Smart Cards, see "Windows Smart Card Technical Reference" at http://technet.microsoft.com/en-us/library/ff404297(v=ws.10).aspx."


Parameter:


Technical Mechanism:

(1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Interactive logon: Require smart card (2) REG: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\scforceoption

CCSS Severity:CCSS Metrics:
CCSS Score : Attack Vector:
Exploit Score: Attack Complexity:
Impact Score: Privileges Required:
Severity: User Interaction:
Vector: Scope:
 Confidentiality:
 Integrity:
 Availability:
  

References:
Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35031
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35031
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35031


OVAL    1
oval:org.secpod.oval:def:35031

© SecPod Technologies