Detections
Analytics
WN12-CC-000127 - The Windows Remote Management (WinRM) service must not allow unencrypted traffic.
Information
Unencrypted remote access to a system can allow sensitive information to be compromised. Windows remote management connections must be encrypted to prevent this.Solution
Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Remote Management (WinRM) -> WinRM Service -> 'Allow unencrypted traffic' to 'Disabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2012_and_2012_R2_MS_V3R7_STIG.zip
Item Details
Category: MAINTENANCE
References: 800-53|MA-4(6), CAT|II, CCI|CCI-002890, CCI|CCI-003123, Rule-ID|SV-225400r877382_rule, STIG-ID|WN12-CC-000127, STIG-Legacy|SV-51756, STIG-Legacy|V-36719, Vuln-ID|V-225400
Plugin: Windows
Control ID: 0c771025bd583b9045a50f7872c0dfc289f6c4c4fdd0485e81039232788258d6