1.1.3.17.9 Set 'User Account Control: Only elevate executables that are signed and validated' to 'Disabled'

Information

This policy setting enforces public key infrastructure (PKI) signature checks for any interactive applications
that request elevation of privilege.

Solution

Make sure 'User Account Control: Only elevate executables that are signed and validated' is disabled.

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-7(6)

Plugin: Windows

Control ID: af456160ee81c24ca2d232f6a29ab0edd22db224f63e3cb59889bb6991310d74