bacaba99-55cc-4c8d-a24e-580204d3862f
Inappropriate granting of user rights can provide system, administrative, and other high-level capabilities.
Accounts with the "Access Credential Manager as a trusted caller" user right may be able to retrieve the credentials of other accounts from Credential Manager
To fix this configure the policy value for
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ User Rights Assignment
|_ Access Credential Manager as a trusted caller to be defined but containing no entries (blank).
STIG: Server
2025: https://system32.eventsentry.com/stig/viewer/V-278241
2022: https://system32.eventsentry.com/stig/viewer/V-254491
2019: https://system32.eventsentry.com/stig/viewer/V-205749
2016: https://system32.eventsentry.com/stig/viewer/V-225070
Desktop
W11: https://system32.eventsentry.com/stig/viewer/V-253479
W10: https://system32.eventsentry.com/stig/viewer/V-220956
NIST 800-53 : AC-6, IA-5, CM-6
NIST 800-171: 3.1.1, 3.1.2, 3.5.10, 3.4.6
CMMC v2.0 L2: AC.L2-3.1.1, AC.L2-3.1.2, IA.L2-3.5.10, CM.L2-3.4.6
PCI-DSS v4.0: 2.2.1, 7.2.1, 8.2.1
HIPAA SR : §164.312(a)(1), §164.312(d)
HIPAA HICP : Practice 3 (Identity and Access Management)
Manage your cookie preferences below:
To learn more about our use of cookies, please see our
Privacy Policy.