1.1.1.7 Set 'Store passwords using reversible encryption' to 'Disabled'

Information

This policy setting determines whether the operating system stores passwords in a way that uses reversible
encryption, which provides support for application protocols that require knowledge of the user's password
for authentication purposes.

Solution

Make sure 'Store passwords using reversible encryption' is disabled.

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1)(c), CSCv6|16.5, CSCv6|16.13, CSCv6|16.14

Plugin: Windows

Control ID: 3729e08d774fc1cb498d9b569c964b71c35a9e9529fec1f1cba2f0cc89b3f33f