Changes are coming to https://stigviewer.com.
Take our survey to help us understand your usage and how we can better serve you in the future.
Take Survey
Local administrator accounts on domain systems must not share the same password.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
|---|---|---|---|---|
| V-36438 | AD.0008 | SV-47844r1_rule | ECSC-1 | Medium |
| Description |
|---|
| Local administrator accounts on domain systems must use unique passwords. In the event a domain system is compromised, sharing the same password for local administrator accounts on domain systems will allow an attacker to move laterally and compromise multiple domain systems. |
| STIG | Date |
|---|---|
| Active Directory Domain Security Technical Implementation Guide (STIG) | 2014-01-07 |
Details
| Check Text ( C-44680r1_chk ) |
|---|
| Verify local administrator accounts on domain systems are using unique passwords. If local administrator accounts on domain systems are sharing a password, this is a finding. |
| Fix Text (F-40970r1_fix) |
|---|
| Set unique passwords for all local administrator accounts on domain systems. |