PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Accounts: Built-in Guest account must be renamed

20dbd0a4-0373-4913-9f75-4ab7f6fcbdb0

The built-in guest account is a well-known user account on all Windows systems and, as initially installed, does not require a password. This can allow access to system resources by unauthorized users. Renaming this account to an unidentified name improves the protection of this account and the system.

Remediation

To fix this configure the policy value for:
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ Security Options
|_ "Accounts: Rename guest account" to a name other than "Guest".

STIG
Server:

2022: https://stigviewer.com/stigs/microsoft_windows_server_2022/2022-08-25/finding/V-254448
2019: https://stigviewer.com/stigs/microsoft_windows_server_2019/2022-03-01/finding/V-205910

Desktop:
W11: https://stigviewer.com/stigs/microsoft_windows_11/2022-06-24/finding/V-253436
W10: https://stigviewer.com/stigs/microsoft_windows_10/2022-04-08/finding/V-220912

NIST 800-53: IA-8
DISA CAT:II
CCI: CCI-000804
Stig Rule-ID: SV-253433r829383_rule



Tags

stig-medium-server stig-medium-desktop desktop server compliance-server compliance-desktop security-desktop security-server nist800-53-desktop nist800-53-server

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.