Check: 3.070
Win2k8 R2 Audit:
3.070
(in version v1 r8)
Title
The system will be configured to prevent the storage of passwords and credentials (Cat II impact)
Discussion
This setting controls the storage of passwords and credentials for network authentication on the local system. Such credentials should never be stored on the local machine as that may lead to account compromise.
Check Content
Fix Text
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “Network access: Do not allow storage of passwords and credentials for network authentication” to “Enabled”.
Additional Identifiers
Rule ID: SV-32336r1_rule
Vulnerability ID: V-3376
Group Title: Storage of Passwords and Credentials
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |