WN11-CC-000350 - The Windows Remote Management (WinRM) service must not allow unencrypted traffic.

Information

Unencrypted remote access to a system can allow sensitive information to be compromised. Windows remote management connections must be encrypted to prevent this.

Solution

Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Remote Management (WinRM) >> WinRM Service >> 'Allow unencrypted traffic' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_11_V2R2_STIG.zip

Item Details

Category: MAINTENANCE

References: 800-53|MA-4(6), CAT|II, CCI|CCI-003123, Rule-ID|SV-253419r958850_rule, STIG-ID|WN11-CC-000350, Vuln-ID|V-253419

Plugin: Windows

Control ID: fb1ebc5c775651fa78f96a97315216eafe9b7f4c2ec9cb878d2d09c2151dca0d