PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Network Access: Must prevent NTLM from falling back to a Null session

793452ad-d37f-461b-a270-cc4e0ea1c2a5

NTLM sessions that are allowed to fall back to Null (unauthenticated) sessions may gain unauthorized access.

Remediation

To fix this configure the policy value for
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ Security Options
|_ Network security: Allow LocalSystem NULL session fallback to "Disabled".

STIG
Server
2022: https://stigviewer.com/stigs/microsoft_windows_server_2022/2022-08-25/finding/V-254471
2019: https://stigviewer.com/stigs/microsoft_windows_server_2019/2022-03-01/finding/V-205917

Desktop:
W11: https://stigviewer.com/stigs/microsoft_windows_11/2022-06-24/finding/V-253458
W10: https://stigviewer.com/stigs/microsoft_windows_10/2022-04-08/finding/V-220934

Nist 800-53: AC-6(10)
Nist 800-171A: 3.1.7[a], 3.1.7[b], 3.1.7[c], 3.1.7[d]"
Owasp: A01:2021
CMMC v2.1: AC.L2-3.1.7 AC.L2-3.1.7



Tags

stig-medium-server compliance-server security-server stig-medium-desktop compliance-desktop security-desktop nist800-171-desktop nist800-171-server cmmc2-l2-desktop cmmc2-l2-server tisax

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.