Windows Server 2022 Windows Remote Management (WinRM) client must not use Digest authentication.

An XCCDF Rule

Details
Profiles

Description

Digest authentication is not as strong as other options and may be subject to man-in-the-middle attacks. Disallowing Digest authentication will reduce this potential.

ID: SV-254380r958510_rule
Version: WN22-CC-000490
Severity: Medium
References: CCI-000877
Updated: 6 days ago

Remediation Templates

Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Windows Remote Management (WinRM) >> WinRM Client >> Disallow Digest authentication to "Enabled".

Windows Server 2022 Windows Remote Management (WinRM) client must not use Digest authentication.

Description

Remediation Templates

A Manual Procedure