Detections
Analytics
Reversible Passwords in GPO
medium
Language:
Description
While creating local accounts on machines via GPOs, some administrators may unknowingly store passwords in a format that is accessible to attackers. Additionally, configuring computers to bypass password requirements during startup can also result in such security issues.
Solution
GPOs that store reversible passwords are typically legacy settings or autologon features that you should eliminate. These settings expose valid credentials and pose a security risk.
See Also
MS14-025: Vulnerability in Group Policy Preferences could allow elevation of privilege