1.2.4.2.3.18 Set 'Allow access to BitLocker-protected removable data drives from earlier versions of Windows' to 'Disabled'

Information

This policy setting configures whether or not removable data drives formatted with the FAT file system can be
unlocked and viewed on computers running Windows Server 2008, Windows Vista, Windows XP with Service Pack 3 (SP3),
or Windows XP with Service Pack 2 (SP2) operating systems.

Solution

Make sure 'Allow access to BitLocker-protected removable data drives from earlier versions of Windows' is set to 'Disabled'

See Also

https://workbench.cisecurity.org/files/17

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-28(1), CSCv6|13.2

Plugin: Windows

Control ID: 90e4515fcd0dba61a186871b6f206ef8315123cc04c3c9decf39034301106169