Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

Information

Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security. These values are dependent on the LAN Manager Authentication Level security setting value. The options are:

Require NTLMv2 session security: The connection will fail if message integrity is not negotiated.
Require 128-bit encryption. The connection will fail if strong encryption (128-bit) is not negotiated.

Default: No requirements.

Solution

Policy Path: Security Options
Policy Setting Name: Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

Item Details

Audit Name: MSCT Windows 11 v25H2 v1.0.0

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8

Plugin: Windows

Control ID: 3935d25af80c555ef401325951f922e3d01b0f7f27e97a9c6bceb0f9f867d31b

Detections

Analytics

Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

Information

Solution

See Also

Item Details