Detections
Analytics

1.127 WN22-CC-000340

Information

Windows Server 2022 must not save passwords in the Remote Desktop Client.

GROUP ID: V-254365
RULE ID: SV-254365r1051096

Saving passwords in the Remote Desktop Client could allow an unauthorized user to establish a remote desktop session to another system. The system must be configured to prevent users from saving passwords in the Remote Desktop Client.

Satisfies: SRG-OS-000373-GPOS-00156, SRG-OS-000373-GPOS-00157

Solution

Configure the policy value for

Computer Configuration >> Administrative Templates >> Windows Components >> Remote Desktop Services >> Remote Desktop Connection Client >> Do not allow passwords to be saved to 'Enabled'

See Also

https://workbench.cisecurity.org/benchmarks/22357

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-11, CAT|II, CCI|CCI-002038, Rule-ID|SV-254365r1051096_rule, STIG-ID|WN22-CC-000340, Vuln-ID|V-254365

Plugin: Windows

Control ID: 45f88411330f3c543e6fd6d8319fc0b2b5b4c793bfebf6e7a7f7b33cd1780252