[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

111666

 
 

909

 
 

87321

 
 

136

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-42264-2

Platform: win10Date: (C)2016-09-23   (M)2018-07-10



Disable: 'Network access: Sharing and security model for local accounts' for ForceGuest This policy setting determines how network logons that use local accounts are authenticated. The Classic option allows precise control over access to resources, including the ability to assign different types of access to different users for the same resource. The Guest only option allows you to treat all users equally. In this context, all users authenticate as Guest only to receive the same access level to a given resource. Counter Measure: For network servers, configure the Network access: Sharing and security model for local accounts setting to Classic - local users authenticate as themselves. On end-user computers, configure this policy setting to Guest only - local users authenticate as guest. Potential Impact: None. This is the default configuration.


Parameter:


Technical Mechanism: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Network access: Sharing and security model for local accounts (2) REG: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\ForceGuest

References:

Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:35081


OVAL    1
oval:org.secpod.oval:def:35081
XCCDF    5
xccdf_org.secpod_benchmark_general_Windows_10
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_10
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_10
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_10
...

© SecPod Technologies