Accounts: Rename administrator accountID: oval:org.secpod.oval:def:8831 | Date: (C)2013-01-21 (M)2022-10-10 |
Class: COMPLIANCE | Family: windows |
The built-in Administrator account should be correctly named.
The built-in local administrator account is a well-known account name that attackers will target. Microsoft recommends to choose another name for this account, and to avoid names that denote administrative or elevated access accounts. Be sure to also change the default description for the local administrator (through the Computer Management console). Note This policy setting is not configured in the baseline, nor does Microsoft suggest a user name for the account. Suggested user names are omitted to ensure that organizations that implement this guidance will not use the same new user name in their environments.
Fix:
(1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Accounts: Rename administrator account
(2) REG: NO INFO
Platform: |
Microsoft Windows Server 2008 R2 |