An error occurred:

Check: 4.044

Windows 2003 DC STIG: 4.044 (in version v6 r40)

Title

The system is not configured to require a strong session key. (Cat II impact)

Discussion

This setting controls the required strength of a session key.

Check Content

Fix Text

Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “Domain Member: Require Strong (Windows 2000 or Later) Session Key” to “Enabled”.

Additional Identifiers

Rule ID: SV-29248r1_rule

Vulnerability ID: V-3374

Group Title:

Expert Comments

Expert comments are only available to logged-in users.

CCIs

CCIs tied to check.
Number Definition
CCI-002418

Protect the confidentiality and/or integrity of transmitted information.
CCI-002421

Implement cryptographic mechanisms to prevent unauthorized disclosure of information and/or detect changes to information during transmission.

Controls

Controls tied to check. These are derived from the CCIs shown above.
Number Title
SC-8

Transmission Confidentiality and Integrity
SC-8(1)

Cryptographic or Alternate Physical Protection