1.1.4.16 Set 'Act as part of the operating system' to 'No One'

Information

This policy setting allows a process to assume the identity of any user and thus gain access to the resources that
the user is authorized to access.

Solution

Make sure no one can act as part of the operating system.

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6(7)(b), CSCv6|5.1

Plugin: Windows

Control ID: 9df1db577280cc1c8a1293a2087ccdd871b47601575cda4be6de5b35c1b1591e