Detections
Analytics
WN22-SO-000410 - Windows Server 2022 User Account Control (UAC) must automatically deny standard user requests for elevation.
Warning! Audit Deprecated
This audit has been deprecated and will be removed in a future update.
View Next Audit VersionInformation
UAC is a security mechanism for limiting the elevation of privileges, including administrative accounts, unless authorized. This setting controls the behavior of elevation when requested by a standard user account.Satisfies: SRG-OS-000373-GPOS-00156, SRG-OS-000373-GPOS-00157
Solution
Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> User Account Control: Behavior of the elevation prompt for standard users to 'Automatically deny elevation requests'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2022_V1R3_STIG.zip
Item Details
Audit Name: DISA Windows Server 2022 STIG v1r3
References: CAT|II, CCI|CCI-002038, Rule-ID|SV-254485r849271_rule, STIG-ID|WN22-SO-000410, Vuln-ID|V-254485
Plugin: Windows
Control ID: 0c6158e5d5e3aa71f7b4674a7bf44285aa49175704ec2cbf6e29d4a0d645b540