Windows Server 2019 manually managed application account passwords must be changed at least annually or when a system administrator with knowledge of the password leaves the organization.

An XCCDF Rule

Details
Profiles

Description

Setting application account passwords to expire may cause applications to stop functioning. However, not changing them on a regular basis exposes them to attack. If managed service accounts are used, this alleviates the need to manually change application account passwords.

ID: SV-205847r991589_rule
Version: WN19-00-000060
Severity: Medium
References: CCI-000366
Updated: 6 days ago

Remediation Templates

Change passwords for manually managed application/service accounts at least annually or when an administrator with knowledge of the password leaves the organization.

It is recommended that system-managed service accounts be used whenever possible.

Windows Server 2019 manually managed application account passwords must be changed at least annually or when a system administrator with knowledge of the password leaves the organization.

Description

Remediation Templates

A Manual Procedure