[Forgot Password]
Login  Register Subscribe

23631

 
 

122461

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-47193-8

Platform: win2016Date: (C)2017-08-03   (M)2017-10-16



"Set client connection encryption level" This policy setting specifies whether the computer that is about to host the remote connection will enforce an encryption level for all data sent between it and the client computer for the remote session. Vulnerability: If Terminal Server client connections are allowed that use low level encryption, it is more likely that an attacker will be able to decrypt any captured Terminal Services network traffic. Counter Measure: Configure the Set Client Connection Encryption Level setting to High Level. Potential Impact: Clients that do not support 128-bit encryption will be unable to establish Terminal Server sessions.


Parameter:


Technical Mechanism: Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security (2) REG: No Registry Info

References:

Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:40195


OVAL    1
oval:org.secpod.oval:def:40195
XCCDF    3
xccdf_org.secpod_benchmark_general_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_Server_2016
xccdf_org.secpod_benchmark_PCI_3_2_Windows_Server_2016

© 2013 SecPod Technologies