Finding ID | Version | Rule ID | IA Controls | Severity |
---|---|---|---|---|
V-2375 | 3.060 | SV-29764r1_rule | ECLP-1 | Medium |
Description |
---|
The Restricted Groups option allows the administrator to manage membership of sensitive groups. The Power Users group is one such group. This group has been given significant privileges under Windows 2000. |
STIG | Date |
---|---|
Windows XP Security Technical Implementation Guide | 2013-07-03 |
Check Text ( C-151r1_chk ) |
---|
Expand the “Security Configuration and Analysis” object in the tree window. Expand the “Restricted Groups” object. Double click the value for “Power Users”. If there are any users or groups listed under the “members” tab, then this is a finding. If there are any groups listed under the “member of” tab, then this is a finding. |
Fix Text (F-119r1_fix) |
---|
Configure the system to restrict membership of the Power Users group to have no accounts or groups as members. |