Detections
Analytics
WN08-AC-000009 - Reversible password encryption must be disabled.
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
Storing passwords using reversible encryption is essentially the same as storing clear-text versions of the passwords. For this reason, this policy must never be enabled.Solution
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Account Policies -> Password Policy -> 'Store password using reversible encryption' to 'Disabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_8_and_8-1_V1R23_STIG.zip
Item Details
Audit Name: DISA Windows 8/8.1 STIG v1r23
Category: IDENTIFICATION AND AUTHENTICATION
References: 800-53|IA-5(1), CAT|I, CCI|CCI-000196, CSCv6|16.5, CSCv6|16.13, CSCv6|16.14, Rule-ID|SV-48064r1_rule, STIG-ID|WN08-AC-000009, Vuln-ID|V-2372
Plugin: Windows
Control ID: 15f45884761a878718595e7f43a0414fcd872142b451ddaa6619deb562ee9f4b