Detections
Analytics

1.254 WN22-UR-000010

Information

Windows Server 2022 Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts.

GROUP ID: V-254491
RULE ID: SV-254491r958726

Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities.

Accounts with the 'Access Credential Manager as a trusted caller' user right may be able to retrieve the credentials of other accounts from Credential Manager.

Solution

Configure the policy value for

Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> User Rights Assignment >> Access Credential Manager as a trusted caller

to be defined but containing no entries (blank).

See Also

https://workbench.cisecurity.org/benchmarks/22357

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6(10), CAT|II, CCI|CCI-002235, Rule-ID|SV-254491r958726_rule, STIG-ID|WN22-UR-000010, Vuln-ID|V-254491

Plugin: Windows

Control ID: ac4a8c56e3c901f981007d648fbfb41a9efd1f73744dcb90b39cb4ad06444dff