PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Network Access: System must prevent PKU2U authentication using online identities

62385837-ef10-43ae-b1db-590f32a082c8

PKU2U is a peer-to-peer authentication protocol. This setting prevents online identities from authenticating to domain-joined systems. Authentication will be centrally managed with Windows user accounts.

Remediation

To fix this configure the policy value for
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ Security Options
|_ Network security: Allow PKU2U authentication requests to this computer to use online identities to "Disabled".

STIG: Server
2022: https://system32.eventsentry.com/stig/viewer/V-254472
2019: https://system32.eventsentry.com/stig/viewer/V-205918
2016: https://system32.eventsentry.com/stig/viewer/V-225051

Desktop
W11: https://system32.eventsentry.com/stig/viewer/V-253459
W10: https://system32.eventsentry.com/stig/viewer/V-220935

NIST 800-53 : CM-6, CM-7, IA-3, IA-8
NIST 800-171: 3.4.6, 3.5.3
CMMC v2.0 L2: CM.L2-3.4.6, IA.L2-3.5.3
PCI-DSS v4.0: 2.2.1, 8.2.1
HIPAA SR : §164.312(a)(1), §164.312(d)
HIPAA HICP : Practice 3 (Identity and Access Management)



Tags

stig-medium-server stig-medium-desktop nist800-171-server nist800-171-desktop nist800-53-desktop nist800-53-server pci-dss-v4-desktop pci-dss-v4-server hipaa-desktop hipaa-server cmmc2-l2-desktop cmmc2-l2-server

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.