WN22-CC-000490 - Windows Server 2022 Windows Remote Management (WinRM) client must not use Digest authentication.

Information

Digest authentication is not as strong as other options and may be subject to man-in-the-middle attacks. Disallowing Digest authentication will reduce this potential.

Solution

Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Remote Management (WinRM) >> WinRM Client >> Disallow Digest authentication to 'Enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2022_V2R2_STIG.zip

Item Details

Category: MAINTENANCE

References: 800-53|MA-4c., CAT|II, CCI|CCI-000877, Rule-ID|SV-254380r958510_rule, STIG-ID|WN22-CC-000490, Vuln-ID|V-254380

Plugin: Windows

Control ID: fe6f0399e2c8e990d2ae0a9d72e2669639cfb77180346f4f53098275db40901c