Disable: 'Microsoft network server: Digitally sign communications (if client agrees)' for enablesecuritysignature
|ID: oval:org.secpod.oval:def:35374||Date: (C)2016-06-10 (M)2018-03-15|
|Class: COMPLIANCE||Family: windows|
This policy setting determines if the server side SMB service is able to sign SMB packets if it is requested to do so by a client that attempts to establish a connection. If no signing request comes from the client, a connection will be allowed without a signature if the Microsoft network server: Digitally sign communications (always) setting is not enabled.
Note Enable this policy setting on SMB clients on your network to make them fully effective for packet signing with all clients and servers in your environment.
|Microsoft Windows 10|