[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

MSS: (AutoAdminLogon) Enable Automatic Logon (Not Recommended)

ID: oval:gov.nist.usgcb.windowsseven:def:122Date: (C)2012-04-13   (M)2017-10-21
Class: COMPLIANCEFamily: windows




Determines whether the automatic logon feature is enabled. Automatic logon uses the domain, user name, and password stored in the registry to log users on to the computer when the system starts. The Log On to Windows dialog box is not displayed. This entry determines whether the automatic logon feature is enabled. (This entry is separate from the Welcome screen feature; if you disable that feature, this entry is not affected.) By default, this entry is not enabled. Automatic logon uses the domain, user name, and password that are stored in the registry to log users on to the computer when the computer starts. The logon dialog box is not displayed. Vulnerability: If you configure a computer for automatic logon, anyone who can physically gain access to the computer can also gain access to everything that is on the computer, including any network or networks that the computer is connected to. Also, if you enable automatic logon, the password is stored in the registry in plain text. The specific registry key that stores this setting is can be read remotely by the Authenticated Users group. As a result, this entry is appropriate only if the computer is physically secured and if you ensure that untrusted users cannot view the registry remotely. Countermeasure: Do not configure the AutoAdminLogon entry except on highly secure computers, where it should be configured to a value of Disabled. Potential impact: None. By default this entry is not enabled. Fix: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended) (2) REG: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon!AutoAdminLogon

Platform:
Microsoft Windows 7
Reference:
CCE-9342-7
CPE    1
cpe:/o:microsoft:windows_7
CCE    1
CCE-9342-7
XCCDF    10
xccdf_org.secpod_benchmark_cip_std_ver3_Windows_7
xccdf_hippa_benchmark_Windows_7
xccdf_org.secpod_benchmark_ISO27001_Windows_7
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_7
...

© 2013 SecPod Technologies