WN19-00-000200 - Windows Server 2019 accounts must require passwords.

Warning! Audit Deprecated

This audit has been deprecated and will be removed in a future update.

View Next Audit Version

Information

The lack of password protection enables anyone to gain access to the information system, which opens a backdoor opportunity for intruders to compromise the system as well as other resources. Accounts on a system must require passwords.

Solution

Configure all enabled accounts to require passwords.

The password required flag can be set by entering the following on a command line: 'Net user [username] /passwordreq:yes', substituting [username] with the name of the user account.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2019_V2R7_STIG.zip

Item Details

References: CAT|II, CCI|CCI-000764, Rule-ID|SV-205700r857294_rule, STIG-ID|WN19-00-000200, STIG-Legacy|SV-103525, STIG-Legacy|V-93439, Vuln-ID|V-205700

Plugin: Windows

Control ID: e6fbd06402aa4170778711fee4cbed37766e0c5972d7f0d39d13a3bf78a69cc3