Detections
Analytics

Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

Information

Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

 This security setting allows a server to require the negotiation of 128-bit encryption and/or NTLMv2 session security. These values are dependent on the LAN Manager Authentication Level security setting value. The options are:

 Require NTLMv2 session security: The connection will fail if message integrity is not negotiated.
 Require 128-bit encryption. The connection will fail if strong encryption (128-bit) is not negotiated.

 Default: No requirements.

Solution

Policy Path: Security Options
 Policy Setting Name: Network security: Minimum session security for NTLM SSP based (including secure RPC) servers

See Also

https://techcommunity.microsoft.com/t5/microsoft-security-baselines/security-baseline-final-for-windows-10-version-21h1/ba-p/2362353

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8

Plugin: Windows

Control ID: 3582d34c4ce1c5eff7b94d0805ce13ffe721465f6f69c5289c6c36159ad2476f