PingSentry   |   Discord   |   System32   |   GitHub   |   Free tools

Remote Desktop Services: Must not save passwords in the Remote Desktop Client

bfb98113-cc94-400b-a385-af36657755f6

Saving passwords in the Remote Desktop Client could allow an unauthorized user to establish a remote desktop session to another system. The system must be configured to prevent users from saving passwords in the Remote Desktop Client. Satisfies:

Remediation

Configure the policy value for:
Computer Configuration
|_ Administrative Templates
|_ Windows Components
|_ Remote Desktop Services
|_ Remote Desktop Connection Client
|_ Do not allow passwords to be saved to "Enabled".

STIG:
Server 2020: https://stigviewer.com/stigs/microsoft_windows_server_2022/2022-08-25/finding/V-254365
Server 2019: https://stigviewer.com/stigs/microsoft_windows_server_2019/2022-03-01/finding/V-205808

Desktop:
W11: https://stigviewer.com/stigs/microsoft_windows_11/2022-06-24/finding/V-253402
W10: https://stigviewer.com/stigs/windows_10/2021-08-18/finding/V-220848

NIST 800-53: CM-6(a),IA-11
SRG-OS-000373-GPOS-00157, SRG-OS-000373-GPOS-00156
MITRE Att&ck: T1021.001, T1563.002 Mitigations: M1028



Tags

stig-medium-server stig-medium-desktop desktop compliance-server compliance-desktop server security-desktop security-server nist800-53-desktop nist800-53-server remote-desktop mitre-att-desktop mitre-att-server

Your Privacy Choices

Manage your cookie preferences below:

Helps us improve website performance and understand how visitors use our site.

Allows us to collect feedback about our products and improve them based on your input.

To learn more about our use of cookies, please see our
Privacy Policy.