Check: 4.022
Windows 2003 MS STIG:
4.022
(in version v6 r37)
Title
The built-in administrator account has not been renamed. (Cat II impact)
Discussion
The built-in administrator account is a well known account. Renaming the account to an unidentified name improves the protection of this account and the system.
Check Content
Analyze the system using the Security Configuration and Analysis snap-in. Expand the Security Configuration and Analysis tree view. Navigate to Local Policies -> Security Options. If the value for “Accounts: Rename administrator account” is not set to a value other than “Administrator”, then this is a finding.
Fix Text
Configure the system to rename the built-in administrator account.
Additional Identifiers
Rule ID: SV-28996r1_rule
Vulnerability ID: V-1115
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| CCI-000366 |
Implement the security configuration settings. |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| CM-6 |
Configuration Settings |