Detections
Analytics

1.256 WN22-UR-000030

Information

Windows Server 2022 Allow log on locally user right must only be assigned to the Administrators group.

GROUP ID: V-254493
RULE ID: SV-254493r958472

Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities.

Accounts with the 'Allow log on locally' user right can log on interactively to a system.

Solution

Configure the policy value for

Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> User Rights Assignment >> Allow log on locally

to include only the following accounts or groups:

 - Administrators

See Also

https://workbench.cisecurity.org/benchmarks/22357

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3, CAT|II, CCI|CCI-000213, Rule-ID|SV-254493r958472_rule, STIG-ID|WN22-UR-000030, Vuln-ID|V-254493

Plugin: Windows

Control ID: 7005535e3a7c3b56d5bf76cedcfb004f516a202749b2108d4e277383d89eb4a3