The Windows Remote Management (WinRM) client must not allow unencrypted traffic.

An XCCDF Rule

Details
Profiles

Description

Unencrypted remote access to a system can allow sensitive information to be compromised. Windows remote management connections must be encrypted to prevent this. Satisfies: SRG-OS-000393-GPOS-00173, SRG-OS-000394-GPOS-00174

ID: SV-224959r958848_rule
Version: WN16-CC-000510
Severity: Medium
References: CCI-002890 CCI-003123
Updated: 3 days ago

Remediation Templates

Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Remote Management (WinRM) >> WinRM Client >> "Allow unencrypted traffic" to "Disabled".

The Windows Remote Management (WinRM) client must not allow unencrypted traffic.

Description

Remediation Templates

A Manual Procedure