[Forgot Password]
Login  Register Subscribe

24003

 
 

131486

 
 

106342

 
 

909

 
 

84662

 
 

134

Paid content will be excluded from the download.


Download | Alert*
OVAL

User Account Control: Run all administrators in Admin Approval Mode

ID: oval:org.secpod.oval:def:40208Date: (C)2017-04-25   (M)2018-04-10
Class: COMPLIANCEFamily: windows




This policy setting controls the behavior of all User Account Control (UAC) policy settings for the computer. If you change this policy setting, you must restart your computer. The options are: - Enabled: (Default) Admin Approval Mode is enabled. This policy must be enabled and related UAC policy settings must also be set appropriately to allow the built-in Administrator account and all other users who are members of the Administrators group to run in Admin Approval Mode. - Disabled: Admin Approval Mode and all related UAC policy settings are disabled. Note: If this policy setting is disabled, the Security Center notifies you that the overall security of the operating system has been reduced. Vulnerability: This is the setting that turns on or off UAC. If this setting is disabled, UAC will not be used and any security benefits and risk mitigations that are dependent on UAC will not be present on the system. Counter Measure: Enable the User Account Control: Run all users, including administrators, as standard users setting. Potential Impact: Users and administrators will need to learn to work with UAC prompts and adjust their work habits to use least privilege operations. Fix: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\User Account Control: Run all administrators in Admin Approval Mode (2) REG: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System!EnableLUA

Platform:
Microsoft Windows Server 2016
Reference:
CCE-47154-0
CPE    1
cpe:/o:microsoft:windows_server_2016:::x64
CCE    1
CCE-47154-0
XCCDF    6
xccdf_org.secpod_benchmark_general_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_53_r4_Windows_Server_2016
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_Server_2016
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_Server_2016
...

© 2013 SecPod Technologies