1.1.6 Ensure 'Store passwords using reversible encryption' into 'Disabled'

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

This policy setting determines whether the operating system stores passwords in a way that uses reversible encryption, which provides support for application protocols that require knowledge of the user's password for authentication purposes.

Solution

Make sure 'Store passwords using reversible encryption' is disabled.

See Also

https://workbench.cisecurity.org/files/1941

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(1), CSCv6|16.5

Plugin: Windows

Control ID: 44def7aaa412849dec26332e3e1550252283d333cb2d8e9267865f6c70fcacf4