Access Credential Manager as a trusted caller

Information

This setting is used by Credential Manager during Backup/Restore. No accounts should have this privilege, as it is only assigned to Winlogon. Users saved credentials might be compromised if this privilege is given to other entities.

Solution

Policy Path: User Rights Assignments
Policy Setting Name: Access Credential Manager as a trusted caller

See Also

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/security-baseline-final-for-windows-10-version-21h1/ba-p/2362353

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6(7)(b)

Plugin: Windows

Control ID: 3eb3050de4a2827834b7bf0a6ee9a68479bb13a05e5539209ea33a14ad246ca1