Detections
Analytics
WN19-CC-000490 - Windows Server 2019 Windows Remote Management (WinRM) client must not use Digest authentication.
Information
Digest authentication is not as strong as other options and may be subject to man-in-the-middle attacks. Disallowing Digest authentication will reduce this potential.Solution
Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Remote Management (WinRM) >> WinRM Client >> 'Disallow Digest authentication' to 'Enabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2019_V3R8_STIG.zip
Item Details
Audit Name: DISA Microsoft Windows Server 2019 STIG v3r8
Category: MAINTENANCE
References: 800-53|MA-4c., CAT|II, CCI|CCI-000877, Rule-ID|SV-205712r958510_rule, STIG-ID|WN19-CC-000490, STIG-Legacy|SV-103591, STIG-Legacy|V-93505, Vuln-ID|V-205712
Plugin: Windows
Control ID: f2b0475122fb6ae97c55592d13181f3de6dc91dda02612825a237e568ee625a3