f3afb7e7-d38a-42f2-8290-56da3b445913
Enumeration of administrator accounts when elevating can provide part of the logon information to an unauthorized user. This setting configures the system to always require users to type in a username and password to elevate a running application.
To fix this configure the policy value for:
Computer Configuration
|_ Administrative Templates
|_ Windows Components
|_ Credential User Interface
|_ Enumerate administrator accounts on elevation to "Disabled"
STIG: Server
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2022-08-25/finding/V-254355
2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2022-03-01/finding/V-205714 / https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93517
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2022-03-01/finding/V-224935 / https://www.stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73487
Desktop:
W11: https://www.stigviewer.com/stig/microsoft_windows_11/2022-06-24/finding/V-253391
W10: https://www.stigviewer.com/stig/microsoft_windows_10/2022-04-08/finding/V-220832 / https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220832