CCE-35496-9Platform: win8.1 | Date: (C)2015-10-14 (M)2022-10-10 |
Audit Policy: Account Logon: Kerberos Service Ticket Operations
This subcategory reports generated by Kerberos ticket request processes on the domain controller that is authoritative for the domain account. Events for this subcategory include:
? 4769: A Kerberos service ticket was requested.
? 4770: A Kerberos service ticket was renewed.
? 4773: A Kerberos service ticket request failed.
Refer to the Microsoft Knowledgebase article ?Description of security events in Windows Vista and in Windows Server 2008? for the most recent information about this setting: http://support.microsoft.com/default.aspx/kb/947226.
Parameter:
Technical Mechanism:
(1) GPO: Computer Configuration\Windows Settings\Security Settings\Advanced Audit Policy Configuration\Audit Policies\Account Logon!Audit Policy: Account Logon: Kerberos Service Ticket Operations
(2) WMI: ###
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22660 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22660 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22660 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22660 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22660 |