Remote Management: Windows Remote Management (WinRM) client must not

PingSentry | Blog | System32 | GitHub | Free tools

Remote Management: Windows Remote Management (WinRM) client must not use Basic authentication

e4dd3ff4-f585-4e08-b91e-8bb3e02737c5

Basic authentication uses plain-text passwords that could be used to compromise a system. Disabling Basic authentication will reduce this potential.

Remediation

To fix this, configure the policy value for
Computer Configuration
|_ Administrative Templates
| Windows Components
|_ Windows Remote Management (WinRM)
|_ WinRM Client
|_ Allow Basic authentication to "Disabled".

STIG: Server:
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2022-08-25/finding/V-254378
2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2022-03-01/finding/V-205711 / https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93503
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2022-03-01/finding/V-224958 / stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73593

Desktop:
W11: https://www.stigviewer.com/stig/microsoft_windows_11/2022-06-24/finding/V-253416
W10: https://www.stigviewer.com/stig/microsoft_windows_10/2022-04-08/finding/V-220862 / https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220862

Tags

compliance-desktop compliance-server stig-high-server desktop server security-server security-desktop stig-high-desktop