PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Remote Management: Windows Remote Management (WinRM) service must not allow unencrypted traffic

39413247-a65e-4c0f-ad88-481cc82b1610

Unencrypted remote access to a system can allow sensitive information to be compromised. Windows remote management connections must be encrypted to prevent this.

Satisfies: SRG-OS-000393-GPOS-00173, SRG-OS-000394-GPOS-00174

Remediation

To fix this configure the policy value for Computer Configuration
|_ Administrative Templates
|_ Windows Components
|_ Windows Remote Management (WinRM)
|_ WinRM Service
|_ Allow unencrypted traffic to "Disabled".

STIG:
Server
2022: https://system32.eventsentry.com/stig/viewer/V-254382
2019: https://system32.eventsentry.com/stig/viewer/V-205817

Desktop:
W11: https://system32.eventsentry.com/stig/viewer/V-253419
W10: https://system32.eventsentry.com/stig/viewer/V-220865

Nist 800-53: AC-17(2),AC-17(a),CM-6(a),IA-5(1)(c),MA-4(6),SC-12(2),SC-12(3),SC-13
CIS: 5.2.10
CIS CSC V8: 12.7
CSA CCM v4: HRS-04
PCI v3.2:12.3.8, 12.3.9
PCI v4.0:12.2.1

SRG-OS-000393-GPOS-00173, SRG-OS-000394-GPOS-00174



Tags

stig-medium-server stig-medium-desktop desktop compliance-server compliance-desktop server security-desktop security-server nist800-53-desktop nist800-53-server pci-dss-v4-desktop pci-dss-v4-server

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.