WN10-00-000060 - Non system-created file shares on a system must limit access to groups that require it.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version


Shares which provide network access, should not typically exist on a workstation except for system-created administrative shares, and could potentially expose sensitive information. If a share is necessary, share permissions, as well as NTFS permissions, must be reconfigured to give the minimum access to those accounts that require it.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.


If a non system-created share is required on a system, configure the share and NTFS permissions to limit access to the specific groups or accounts that require it.

Remove any unnecessary non-system created shares.

See Also


Item Details

References: CAT|II, CCI|CCI-001090, Rule-ID|SV-220710r569187_rule, STIG-ID|WN10-00-000060, STIG-Legacy|SV-77847, STIG-Legacy|V-63357, Vuln-ID|V-220710

Plugin: Windows

Control ID: a10318931e3fa933a4d90086c6c29f72ee2677acf7ffc841582d998cf3a9de34