Check: 3.151
Win2k8 R2 Audit:
3.151
(in version v1 r8)
Title
Services using Local System that use negotiate when reverting to NTLM authentication will use the computer identity vs. authenticating anonymously. (Cat II impact)
Discussion
This setting ensures that services using Local System that use negotiate when reverting to NTLM authentication will use the computer identity vs. authenticating anonymously.
Check Content
Fix Text
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “Network Security: Allow Local System to use computer identity for NTLM” to “Enabled”.
Additional Identifiers
Rule ID: SV-32445r1_rule
Vulnerability ID: V-21951
Group Title: Computer Identity Authentication for NTLM
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |