CCE-37133-6Platform: win2012r2 | Date: (C)2015-10-08 (M)2022-10-10 |
Audit Policy: Logon-Logoff: Account Lockout
This subcategory reports when a user's account is locked out as a result of too many failed logon attempts. Events for this subcategory include:
? 4625: An account failed to log on.
Refer to the Microsoft Knowledgebase article ?Description of security events in Windows Vista and in Windows Server 2008? for the most recent information about this setting: http://support.microsoft.com/default.aspx/kb/947226.
Parameter:
Technical Mechanism:
(1) GPO: Computer Configuration\Windows Settings\Security Settings\Advanced Audit Policy Configuration\Audit Policies\Logon/Logoff!Audit Policy: Logon-Logoff: Account Lockout
(2) WMI: ###
CCSS Severity: | CCSS Metrics: |
CCSS Score : | Attack Vector: |
Exploit Score: | Attack Complexity: |
Impact Score: | Privileges Required: |
Severity: | User Interaction: |
Vector: | Scope: |
| Confidentiality: |
| Integrity: |
| Availability: |
| |
References: Resource Id | Reference |
---|
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22906 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22906 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22906 |
SCAP Repo OVAL Definition | oval:org.secpod.oval:def:22906 |