Details
Storing passwords using reversible encryption is essentially the same as storing clear-text versions of the passwords. For this reason, this policy should never be enabled.
Solution
Configure the system to prevent passwords from being saved using reverse encryption.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system Windows.
References
- 800-53|IA-5(1)(c)
- CAT|II
- CCI|CCI-000196
- CSCv6|16.5
- CSCv6|16.13
- CSCv6|16.14
- Rule-ID|SV-29688r1_rule
- STIG-ID|3.057
- Vuln-ID|V-2372