Check: WN22-00-000010
Microsoft Windows Server 2022 STIG:
WN22-00-000010
(in versions v1 r5 through v1 r1)
Title
Windows Server 2022 users with Administrative privileges must have separate accounts for administrative duties and normal operational tasks. (Cat II impact)
Discussion
Using a privileged account to perform routine functions makes the computer vulnerable to malicious software inadvertently introduced during a session that has been granted full privileges.
Check Content
Verify each user with administrative privileges has been assigned a unique administrative account separate from their standard user account. If users with administrative privileges do not have separate accounts for administrative functions and standard user functions, this is a finding.
Fix Text
Ensure each user with administrative privileges has a separate account for user duties and one for privileged duties.
Additional Identifiers
Rule ID: SV-254238r848530_rule
Vulnerability ID: V-254238
Group Title: SRG-OS-000480-GPOS-00227
Expert Comments
CCIs
Number | Definition |
---|---|
CCI-000366 |
The organization implements the security configuration settings. |
Controls
Number | Title |
---|---|
CM-6 |
Configuration Settings |