Network security: Minimum session security for NTLM SSP based (including secure RPC) clients

Information

Network security: Minimum session security for NTLM SSP based (including secure RPC) clients

This security setting allows a client to require the negotiation of 128-bit encryption and/or NTLMv2 session security. These values are dependent on the LAN Manager Authentication Level security setting value. The options are:

Require NTLMv2 session security: The connection will fail if NTLMv2 protocol is not negotiated.
Require 128-bit encryption: The connection will fail if strong encryption (128-bit) is not negotiated.

Default: No requirements.

Solution

Policy Path: Local Policies\Security Options
Policy Name: Network security: Minimum session security for NTLM SSP based (including secure RPC) clients

See Also

https://www.microsoft.com/en-us/download/details.aspx?id=55319

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-8, CSCv6|13

Plugin: Windows

Control ID: 7c8732ef72632a97345028e1c1bd50c42f35411702a4b92a3f3cfbd9864d672c