The Windows Remote Management (WinRM) client must not use Digest authentication.

An XCCDF Rule

Details
Profiles

Description

Digest authentication is not as strong as other options and may be subject to man-in-the-middle attacks. Disallowing Digest authentication will reduce this potential.

ID: SV-224960r958510_rule
Version: WN16-CC-000520
Severity: Medium
References: CCI-000877
Updated: 15 days ago

Remediation Templates

Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Remote Management (WinRM) >> WinRM Client >> "Disallow Digest authentication" to "Enabled".

The Windows Remote Management (WinRM) client must not use Digest authentication.

Description

Remediation Templates

A Manual Procedure