Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Microsoft Windows 10 Security Technical Implementation Guide
SRG-OS-000324-GPOS-00125
The Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts.
The Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts.
An XCCDF Rule
Details
Profiles
Prose
The Access Credential Manager as a trusted caller user right must not be assigned to any groups or accounts.
Medium Severity
<VulnDiscussion>Inappropriate granting of user rights can provide system, administrative, and other high level capabilities. Accounts with the "Access Credential Manager as a trusted caller" user right may be able to retrieve the credentials of other accounts from Credential Manager.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>