Detections
Analytics
WN12-CC-000125 - The Windows Remote Management (WinRM) client must not use Digest authentication.
Information
Digest authentication is not as strong as other options and may be subject to man-in-the-middle attacks.Solution
Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Remote Management (WinRM) -> WinRM Client -> 'Disallow Digest authentication' to 'Enabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2012_and_2012_R2_DC_V3R7_STIG.zip
Item Details
Category: MAINTENANCE
References: 800-53|MA-4c., CAT|II, CCI|CCI-000877, Rule-ID|SV-226218r877395_rule, STIG-ID|WN12-CC-000125, STIG-Legacy|SV-51754, STIG-Legacy|V-36714, Vuln-ID|V-226218
Plugin: Windows
Control ID: 83b608ccf77c72b1e2440e2b3f0cad2160758c5bb8f5d9413face6e024ab3ce5