Accounts Using a Pre-Windows 2000 Compatible Access Control

high

Language:

Description

Compatibility with legacy systems can decrease the security level of the whole Active Directory.

Solution

Remove some members of the Pre-Windows 2000 Compatible Access group.

See Also

Pre-Windows 2000 Compatible Access

Pre-Windows 2000 Compatible Access Group Object

Security Identifiers from Windows Server 2003

Indicator Details

Name: Accounts Using a Pre-Windows 2000 Compatible Access Control

Codename: C-PRE-WIN2000-ACCESS-MEMBERS

Severity: High

Type: Active Directory Indicator of Exposure

MITRE ATT&CK Information:

Tactic: TA0043 - Reconnaissance
- Techniques: T1592 - Gather Victim Host Information, T1589 - Gather Victim Identity Information, T1590 - Gather Victim Network Information