Do not allow smart card device redirectionID: oval:org.secpod.oval:def:8881 | Date: (C)2013-01-21 (M)2023-05-09 |
Class: COMPLIANCE | Family: windows |
The Do not allow smart card device redirection machine setting should be configured correctly.
This policy setting allows you to control the redirection of smart card devices in a Remote Desktop Services session. If you enable this policy setting, Remote Desktop Services users cannot use a smart card to log on to a Remote Desktop Services session. If you disable or do not configure this policy setting, smart card device redirection is allowed. By default, Remote Desktop Services automatically redirects smart card devices on connection.
Fix:
(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Device and Resource Redirection\Do not allow smart card device redirection
(2) KEY: HKLM\Software\Policies\Microsoft\Windows NT\Terminal Services\\fEnableSmartCard
Platform: |
Microsoft Windows Server 2008 R2 |