Details

This policy setting allows you to manage whether the Windows Remote Management (WinRM) service accepts Basic authentication from a remote client.

If you enable this policy setting, the WinRM service accepts Basic authentication from a remote client.

If you disable or do not configure this policy setting, the WinRM service does not accept Basic authentication from a remote client.

Solution

Policy Path: Windows ComponentsWindows Remote Management (WinRM)WinRM Service
Policy Setting Name: Allow Basic authentication

Supportive Information

The following resource is also helpful.

• https://techcommunity.microsoft.com/t5/microsoft-security-baselines/security-baseline-final-for-windows-10-v1909-and-windows-server/ba-p/1023093

This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Windows.

References

• 800-53|AC-17(4)
• CSCv6|16.13

Source

• Tenable.com/audits