Detections
Analytics

1.186 WN22-DC-000405

Information

Windows Server 2022 must be configured for certificate-based authentication for domain controllers.

GROUP ID: V-271426
RULE ID: SV-271426r1059557

Active Directory domain services elevation of privilege vulnerability could allow a user rights to the system, such as administrative and other high-level capabilities.

Solution

Configure the registry value.

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: SYSTEM\CurrentControlSet\Services\Kdc

Value Name: StrongCertificateBindingEnforcement

Value Type: REG_DWORD
Value: 0x00000001 (1) or 0x00000002 (2)

See Also

https://workbench.cisecurity.org/benchmarks/22357

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3, CAT|II, CCI|CCI-000213, Rule-ID|SV-271426r1059557_rule, STIG-ID|WN22-DC-000405, Vuln-ID|V-271426

Plugin: Windows

Control ID: 615278282adf9370842cc0ac303cf3f861f3ab2451338c2c90290c72957c6502