Detections
Analytics

1.156 WN10-CC-000270

Information

Passwords must not be saved in the Remote Desktop Client.

GROUP ID: V-220848RULE ID: SV-220848r1051029

Saving passwords in the Remote Desktop Client could allow an unauthorized user to establish a remote desktop session to another system. The system must be configured to prevent users from saving passwords in the Remote Desktop Client.

Solution

Configure the policy value for

Computer Configuration >> Administrative Templates >> Windows Components >> Remote Desktop Services >> Remote Desktop Connection Client >> 'Do not allow passwords to be saved'

to 'Enabled'.

See Also

https://workbench.cisecurity.org/benchmarks/23869

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-11, CCI|CCI-002038, Rule-ID|SV-220848r1051029_rule, STIG-ID|WN10-CC-000270, Vuln-ID|V-220848

Plugin: Windows

Control ID: 857d8d9daea9c2d3642eeb4085dab5010965e61735ba8feeec2020809b09164a