Detections
Analytics

WN12-UR-000014 - The Create permanent shared objects user right must not be assigned to any groups or accounts.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities.

Accounts with the 'Create permanent shared objects' user right could expose sensitive data by creating shared objects.

Solution

Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> User Rights Assignment >> 'Create permanent shared objects' to be defined but containing no entries (blank).

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2012_and_2012_R2_MS_V3R5_STIG.zip

Item Details

References: CAT|II, CCI|CCI-002235, Rule-ID|SV-225554r852272_rule, STIG-ID|WN12-UR-000014, STIG-Legacy|SV-53059, STIG-Legacy|V-26481, Vuln-ID|V-225554

Plugin: Windows

Control ID: 346d519c5fd6677bc9845b86f7cf4272dddaeca927856ae202cf7fe307c4aa6c