PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Domain Controller: Network access must be limited to Admins, Authenticated Users, and Enterprise Domain Controllers

8963a7ff-817a-456e-9e65-fc6ecc10147e

Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities.

Accounts with the "Access this computer from the network" right may access resources on the system, and this right must be limited to those requiring it.

Remediation

To fix this configure the policy value for
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ User Rights Assignment
|_ Access this computer from the network to include only the following accounts or groups:

  • Administrators
  • Authenticated Users
  • Enterprise Domain Controllers

SITG: Server
2022: https://system32.eventsentry.com/stig/viewer/V-254418
2019: https://system32.eventsentry.com/stig/viewer/V-205665
2016: https://system32.eventsentry.com/stig/viewer/V-224997

NIST 800-53 : AC-3, AC-6, CM-6
NIST 800-171: 3.1.1, 3.1.2, 3.4.6
CMMC v2.0 L2: AC.L2-3.1.1, AC.L2-3.1.2, CM.L2-3.4.6
PCI-DSS v4.0: 2.2.1, 7.2.1
HIPAA SR : ยง164.312(a)(1)
HIPAA HICP : Practice 3 (Identity and Access Management)



Tags

stig-medium-server nist800-171-server nist800-53-server pci-dss-v4-server hipaa-server cmmc2-l2-server

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.