Detections
Analytics

1.207 WN10-SO-000140

Information

Anonymous SID/Name translation must not be allowed.

GROUP ID: V-220928RULE ID: SV-220928r991589

Allowing anonymous SID/Name translation can provide sensitive information for accessing a system. Only authorized users must be able to perform such translations.

Solution

Configure the policy value for

Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> 'Network access: Allow anonymous SID/Name translation'

to 'Disabled'.

See Also

https://workbench.cisecurity.org/benchmarks/23869

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CCI|CCI-000366, Rule-ID|SV-220928r991589_rule, STIG-ID|WN10-SO-000140, Vuln-ID|V-220928

Plugin: Windows

Control ID: e3f41d869d36c63323b7b458069bb83fa713d80591770e0ccaddcf3951cefb80