Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Microsoft Windows Defender Firewall with Advanced Security Security Technical Implementation Guide
SRG-OS-000480-GPOS-00227
Inbound exceptions to the firewall on domain workstations must only allow authorized remote management hosts.
Inbound exceptions to the firewall on domain workstations must only allow authorized remote management hosts.
An XCCDF Rule
Details
Profiles
Prose
Inbound exceptions to the firewall on domain workstations must only allow authorized remote management hosts.
Medium Severity
<VulnDiscussion>Allowing inbound access to domain workstations from other systems may allow lateral movement across systems if credentials are compromised. Limiting inbound connections only from authorized remote management systems will help limit this exposure.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>