The built-in local guest account is another well-known name to attackers. Microsoft recommends to rename this account to something that does not indicate its purpose. Even if you disable this account, which is recommended, ensure that you rename it for added security. Note: This policy setting is not configured in the Security Templates, nor is a new user name for the account suggested here. Suggested user names are omitted to ensure that organizations that implement this guidance will not use the same new user name in their environments. Countermeasure: Specify a new name in the Accounts: Rename guest account setting to rename the Guest account. Potential Impact: There should be little impact, because the Guest account is disabled by default.

[Guest name]

(1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Accounts: Rename guest account (2) REG: ### (3) WMI: ###