Check: 5.123
Windows XP STIG:
5.123
(in versions v6 r1.32 through v1 r0)
Title
Restrict unauthenticated RPC clients. (Cat II impact)
Discussion
This check verifies that the system is configured to restrict unauthenticated RPC clients from connecting to the RPC server.
Check Content
If the following registry value doesn’t exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Subkey: \Software\Policies\Microsoft\Windows NT\Rpc\ Value Name: RestrictRemoteClients Type: REG_DWORD Value: 1
Fix Text
Configure the policy value for Computer Configuration -> Administrative Templates -> System -> Remote Procedure Call “Restrictions for Unauthenticated RPC clients” to “Enabled” and “Authenticated”.
Additional Identifiers
Rule ID: SV-14864r1_rule
Vulnerability ID: V-14253
Group Title: RPC - Unauthenticated RPC Clients
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |