Accounts: User Account Control must automatically deny standard user requests for elevation

2a28f305-e508-40e1-80e4-e7702143703b

User Account Control (UAC) is a security mechanism for limiting the elevation of privileges, including administrative accounts, unless authorized. This setting controls the behavior of elevation when requested by a standard user account

Remediation

To fix this configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "User Account Control: Behavior of the elevation prompt for standard users" to "Automatically deny elevation requests".

STIG: Server: https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93433
Desktop: https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220947

NIST 800-53: CM-6(a),IA-11
SRG-OS-000373-GPOS-00157, SRG-OS-000373-GPOS-00156



stig-medium-server
stig-medium-desktop
desktop
compliance-server
compliance-desktop
server
security-desktop
security-server
nist800-53-medium-desktop
nist800-53-medium-server