[Forgot Password]
Login  Register Subscribe

23631

 
 

115084

 
 

97147

 
 

909

 
 

78764

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CCE
view XML

CCE-35990-1

Platform: win2012r2Date: (C)2015-10-08   (M)2017-10-31



Network Security: Restrict NTLM: Add remote server exceptions for NTLM authentication This policy setting allows you to create an exception list of remote servers to which clients are allowed to use NTLM authentication if the 'Network Security: Restrict NTLM: Outgoing NTLM traffic to remote servers' policy setting is configured. The naming format for servers on this exception list is the fully qualified domain name (FQDN) or NetBIOS server name used by the application, listed one per line. To ensure exceptions the name used by all applications needs to be in the list, and to ensure an exception is accurate, the server name should be listed in both naming formats . A single asterisk (*) can be used anywhere in the string as a wildcard character.


Parameter:


Technical Mechanism: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options!Network Security: Restrict NTLM: Add remote server exceptions for NTLM authentication (2) REG: HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\MSV1_0!ClientAllowedNTLMServers

References:

Resource IdReference
SCAP Repo OVAL Definitionoval:org.secpod.oval:def:27238


OVAL    1
oval:org.secpod.oval:def:27238
XCCDF    2
xccdf_org.secpod_benchmark_general_Windows_2012_R2
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_Server_2012_R2

© 2013 SecPod Technologies