Administrator automatic logon is enabled.

Overview

Finding ID	Version	Rule ID	IA Controls	Severity
V-1145	3.040	SV-29005r1_rule	ECSC-1	High

Description
This is a category 1 finding because it will directly log on to the system with administrator privileges when the machine is rebooted. This would give full access to any unauthorized individual who reboots the computer. By default this setting is not enabled. If this setting exists, it should be disabled. If this capability exists, the password may also be present in the registry, and must be removed.

Description

This is a category 1 finding because it will directly log on to the system with administrator privileges when the machine is rebooted. This would give full access to any unauthorized individual who reboots the computer. By default this setting is not enabled. If this setting exists, it should be disabled. If this capability exists, the password may also be present in the registry, and must be removed.

STIG	Date
Windows 2003 Domain Controller Security Technical Implementation Guide	2014-04-07

Details

Check Text ( None )
None

Fix Text (F-98r1_fix)
Configure the policy value for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “MSS: (AutoAdminLogon) Enable Automatic Logon (not recommended)” to “Disabled”.