1.1.3.7.1 Set 'Microsoft network client: Send unencrypted password to third-party SMB servers' to 'Disabled'

Information

Disable this policy setting to prevent the SMB redirector from sending plaintext passwords during authentication
to third-party SMB servers that do not support password encryption.

Solution

Make sure 'Microsoft network client: Send unencrypted password to third-party SMB servers' is set to disabled.

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: SYSTEM AND INFORMATION INTEGRITY

References: 800-53|SI-5, CSCv6|13

Plugin: Windows

Control ID: 68fb963555cba2fccd1e904e6b71fdd4a29916c5be7d451095b04bf53331d215