Accounts: Users must be prompted to authenticate when the system

PingSentry | Blog | System32 | GitHub | Free tools

Accounts: Users must be prompted to authenticate when the system wakes from sleep (on battery)

ef3c9259-d0d3-434a-8e7c-ab945deaa3f0

A system that does not require authentication when resuming from sleep may provide access to unauthorized users. Authentication must always be required when accessing a system. This setting ensures users are prompted for a password when the system wakes from sleep (on battery).

Remediation

To fix this configure the policy value for
Computer Configuration
|_ Administrative Templates
|_ System
|_ Power Management
|_ Sleep Settings
|_ Require a password when a computer wakes (on battery) to "Enabled".

STIG Server:
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2022-08-25/finding/V-254349
2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2022-03-01/finding/V-205867 / https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93253
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2022-03-01/finding/V-224929 / https://www.stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73537
STIG Desktop:
W11: https://www.stigviewer.com/stig/microsoft_windows_11/2022-06-24/finding/V-253380
W10: https://www.stigviewer.com/stig/microsoft_windows_10/2022-04-08/finding/V-220821/ https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220822

Tags

stig-medium-server stig-medium-desktop desktop compliance-server compliance-desktop server security-desktop security-server