Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-3349 | 5.018 | SV-29244r1_rule | Medium |
Description |
---|
This setting prevents the automatic launch of Windows Messenger at user logon. Instant Messaging clients must be in compliance of with the Instant Messaging STIG. Windows Messenger should not be active on Windows unless the instant messaging system is a Managed Enterprise Service for unclassified data for which the DAA has approved. |
STIG | Date |
---|---|
Windows 2008 Domain Controller Security Technical Implementation Guide | 2019-06-18 |
Check Text ( C-547r1_chk ) |
---|
If the following registry value doesn’t exist or its value is not set to 1, then this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Subkey: \Software\Policies\Microsoft\Messenger\Client\ Value Name: PreventAutoRun Type: REG_DWORD Value: 1 Documentable Explanation: If the site has a requirement for Windows Messaging and meets the conditions of the Instant Messaging STIG this needs to be documented with the IAO. |
Fix Text (F-5828r1_fix) |
---|
Configure the policy value for Computer Configuration -> Administrative Templates -> Windows Components -> Windows Messenger “Do Not Automatically Start Windows Messenger Initially” to “Enabled”. |