b1981ae3-ba91-4758-a98c-a5937a0498f7
The built-in Guest and Administrator accounts are well-known user accounts on all Windows systems and, as initially installed, do not require a password. This can allow access to system resources by unauthorized users. It is best practice to rename these accounts to an unidentified name which improves the protection of those account and the system.
https://www.stigviewer.com/stig/windows_10/2018-04-06/finding/V-63625
https://www.stigviewer.com/stig/windows_10/2017-02-21/finding/V-63619
To fix this configure the policy value for
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ Security Options
|_ "Accounts: Rename administrator account" to a name other than "Administrator".
More info: https://www.intowindows.com/how-to-rename-user-accounts-in-windows-10/
Administrator User:
Stig Server:
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2022-08-25/finding/V-254447
2019: https://www.stigviewer.com/stig/microsoft_windows_server_2019/2022-03-01/finding/V-205909 / https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93281
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2022-03-01/finding/V-225026 / https://www.stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73623
Stig Desktop:
W11: https://www.stigviewer.com/stig/microsoft_windows_11/2022-06-24/finding/V-253435
W10: https://www.stigviewer.com/stig/microsoft_windows_10/2022-04-08/finding/V-220911 / https://www.stigviewer.com/stig/windows_10/2016-06-24/finding/V-63619
NIST 800-53: CM-6b.
DISA: CAT II
CCI: CCI-000366
STIG Rule-ID: SV-253435r829389_rule