[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Microsoft network client: Digitally sign communications (if server agrees)

ID: oval:org.secpod.oval:def:8830Date: (C)2013-01-21   (M)2023-07-14
Class: COMPLIANCEFamily: windows




The Microsoft network client: Digitally sign communications (if server agrees) setting should be configured correctly. This policy setting determines whether the SMB client will attempt to negotiate SMB packet signing. The implementation of digital signing in Windows-based networks helps to prevent sessions from being hijacked. If you enable this policy setting, the Microsoft network client will use signing only if the server with which it communicates accepts digitally signed communication. Microsoft recommends to enable The Microsoft network client: Digitally sign communications (if server agrees) setting. Note Enabling this policy setting on SMB clients on your network makes them fully effective for packet signing with all clients and servers in your environment. Fix: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Microsoft network client: Digitally sign communications (if server agrees) (2) KEY: HKLM\System\CurrentControlSet\Services\LanmanWorkstation\Parameters\EnableSecuritySignature

Platform:
Microsoft Windows Server 2008 R2
Reference:
CCE-10974-4
CPE    1
cpe:/o:microsoft:windows_server_2008:r2
CCE    1
CCE-10974-4
XCCDF    3
xccdf_org.secpod_benchmark_general_Windows_Server_2008_R2
xccdf_org.secpod_benchmark_PCI_3_2_Windows_Server_2008_R2
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_Server_2008_R2

© SecPod Technologies