Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Microsoft Windows Server 2016 Security Technical Implementation Guide
SRG-OS-000480-GPOS-00227
Session security for NTLM SSP-based servers must be configured to require NTLMv2 session security and 128-bit encryption.
Session security for NTLM SSP-based servers must be configured to require NTLMv2 session security and 128-bit encryption.
An XCCDF Rule
Details
Profiles
Prose
Session security for NTLM SSP-based servers must be configured to require NTLMv2 session security and 128-bit encryption.
Medium Severity
<VulnDiscussion>Microsoft has implemented a variety of security support providers for use with Remote Procedure Call (RPC) sessions. All of the options must be enabled to ensure the maximum security level.</VulnDiscussion><FalsePositives></FalsePositives><FalseNegatives></FalseNegatives><Documentable>false</Documentable><Mitigations></Mitigations><SeverityOverrideGuidance></SeverityOverrideGuidance><PotentialImpacts></PotentialImpacts><ThirdPartyTools></ThirdPartyTools><MitigationControl></MitigationControl><Responsibility></Responsibility><IAControls></IAControls>