Terminal Services Encryption Level Vulnerability

Vulnerability:

Terminal Services Encryption Level is Medium or Low

Risk Level = Medium

Remediation:

Set Encryption Level to High
Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security and can be configured by using either the Local Group Policy Editor or the Group Policy Management Console (GPMC)

FIPS
Use FIPS compliant algorithms for encryption, hashing, and signing Group Policy setting. This Group Policy setting is located in Computer Configuration\Policies\Windows Settings\Security Settings\Local Policies\Security Options and can be configured by using either the Local Group Policy Editor or the Group Policy Management Console (GPMC).

Comments

  1. I really appreciate this wonderful post that you have provided for us. I assure this would be beneficial for most of the people. Cyber Attack

    ReplyDelete

Post a Comment

Popular posts from this blog

Terminal Services Encryption Level is not FIPS-140 Compliant Vulnerability

Terminal Services Doesn't Use Network Level Authentication (NLA) Only