Details
This policy setting allows the configuration of wireless settings using Windows Connect Now (WCN). The WCN Registrar enables the discovery and configuration of devices over Ethernet (UPnP) over in-band 802.11 Wi-Fi through the Windows Portable Device API (WPD) and via USB Flash drives. Additional options are available to allow discovery and configuration over a specific medium.
The recommended state for this setting is: Disabled.
Rationale:
This setting enhances the security of the environment and reduces the overall risk exposure related to user configuration of wireless settings.
Impact:
WCN operations are disabled over all media.
Solution
To establish the recommended configuration via GP, set the following UI path to Disabled:
Computer ConfigurationPoliciesAdministrative TemplatesNetworkWindows Connect NowConfiguration of wireless settings using Windows Connect Now
Note: This Group Policy path is provided by the Group Policy template WindowsConnectNow.admx/adml that is included with all versions of the Microsoft Windows Administrative Templates.
Default Value:
WCN operations are enabled and allowed over all media.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Configuration Management.This control applies to the following type of system Windows.