[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Microsoft network server: Digitally sign communications (if client agrees)

ID: oval:org.secpod.oval:def:8833Date: (C)2013-01-21   (M)2023-07-14
Class: COMPLIANCEFamily: windows




The Microsoft network server: Digitally sign communications (if client agrees) setting should be configured correctly. This policy setting determines if the server side SMB service is able to sign SMB packets if it is requested to do so by a client that attempts to establish a connection. If no signing request comes from the client, a connection will be allowed without a signature if the Microsoft network server: Digitally sign communications (always) setting is not enabled. Note Enable this policy setting on SMB clients on your network to make them fully effective for packet signing with all clients and servers in your environment. Fix: (1) GPO: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\Microsoft network server: Digitally sign communications (if client agrees) (2) KEY: HKLM\System\CurrentControlSet\Services\LanmanServer\Parameters\EnableSecuritySignature

Platform:
Microsoft Windows Server 2008 R2
Reference:
CCE-10978-5
CPE    1
cpe:/o:microsoft:windows_server_2008:r2
CCE    1
CCE-10978-5
XCCDF    4
xccdf_org.secpod_benchmark_HIPAA_45CFR_164_Windows_Server_2008_R2
xccdf_org.secpod_benchmark_general_Windows_Server_2008_R2
xccdf_org.secpod_benchmark_PCI_3_2_Windows_Server_2008_R2
xccdf_org.secpod_benchmark_NIST_800_171_R1_Windows_Server_2008_R2
...

© SecPod Technologies