[Forgot Password]
Login  Register Subscribe

24003

 
 

131573

 
 

108684

 
 

909

 
 

85446

 
 

134

Paid content will be excluded from the download.


Download | Alert*
OVAL

Set client connection encryption level

ID: oval:org.secpod.oval:def:40195Date: (C)2017-04-25   (M)2018-04-10
Class: COMPLIANCEFamily: windows




This policy setting specifies whether the computer that is about to host the remote connection will enforce an encryption level for all data sent between it and the client computer for the remote session. Vulnerability: If Terminal Server client connections are allowed that use low level encryption, it is more likely that an attacker will be able to decrypt any captured Terminal Services network traffic. Counter Measure: Configure the Set Client Connection Encryption Level setting to High Level. Potential Impact: Clients that do not support 128-bit encryption will be unable to establish Terminal Server sessions. Fix: (1) GPO: Computer Configuration\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security\Set client connection encryption level (2) REG: NO INFO

Platform:
Microsoft Windows Server 2016
Reference:
CCE-47193-8
CPE    1
cpe:/o:microsoft:windows_server_2016:::x64
CCE    1
CCE-47193-8
XCCDF    6
xccdf_org.secpod_benchmark_general_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_Server_2016
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_Server_2016
...

© SecPod Technologies