WN12-CC-000135 - Users must be prevented from redirecting Plug and Play devices to the Remote Desktop Session Host. (Remote Desktop Services Role).

Information

Preventing the redirection of Plug and Play devices in Remote Desktop sessions helps reduce possible exposure of sensitive data.

Solution

Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote Desktop Session Host -> Device and Resource Redirection -> 'Do not allow supported Plug and Play device redirection' to 'Enabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_2012_and_2012_R2_DC_V3R7_STIG.zip

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-17(1), CAT|II, CCI|CCI-002314, Rule-ID|SV-226227r852122_rule, STIG-ID|WN12-CC-000135, STIG-Legacy|SV-52229, STIG-Legacy|V-15999, Vuln-ID|V-226227

Plugin: Windows

Control ID: de57cb98450e9b0df81f6e73302e0da0563d0e758df67eac32072e30fc2404a0