WN22-UR-000080 - Windows Server 2022 create permanent shared objects user right must not be assigned to any groups or accounts.

Information

Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities.

Accounts with the 'Create permanent shared objects' user right could expose sensitive data by creating shared objects.

Solution

Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> User Rights Assignment >> Create permanent shared objects to be defined but containing no entries (blank).

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2022_V2R2_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-6(10), CAT|II, CCI|CCI-002235, Rule-ID|SV-254498r958726_rule, STIG-ID|WN22-UR-000080, Vuln-ID|V-254498

Plugin: Windows

Control ID: 7b6304021f8dd52d5b6d7e010fedf31c6b618516119a73baa1ea4b9c87059201