WN10-00-000065 – Unused accounts must be disabled or removed from the system after 35 days of inactivity.

Details

Outdated or unused accounts provide penetration points that may go undetected. Inactive accounts must be deleted if no longer necessary or, if still required, disable until needed.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Regularly review local accounts and verify their necessity. Disable or delete any active accounts that have not been used in the last 35 days.

Supportive Information

The following resource is also helpful.

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_10_V2R3_STIG.zip

This security hardening control applies to the following category of controls within NIST 800-53: Identification and Authentication.This control applies to the following type of system Windows.

References

800-53|IA-4e.
CAT|III
CCI|CCI-000795
Rule-ID|SV-220711r569187_rule
STIG-ID|WN10-00-000065
STIG-Legacy|SV-77849
STIG-Legacy|V-63359
Vuln-ID|V-220711

Source

Tenable.com/audits

Updated on July 16, 2022

Was this article helpful?

Yes No

Details

Solution

Supportive Information

References

Source

Related Articles