Back

Configure the "RPC Endpoint Mapper Client Authentication" to organizational standards.


CONTROL ID
08202
CONTROL TYPE
Configuration
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS




This Control directly supports the implied Control(s):
  • Configure Key, Certificate, Password, Authentication and Identity Management settings in accordance with organizational standards., CC ID: 07621

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH




  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Disabled". (0C1BEBBB-AB69-4093-9E04-C237E1F19CF4, Win7SP1 Computer Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Disabled". (CA8523EC-B32D-4CB0-BAC4-9DFA139C0928, Win7SP1 Computer Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Disabled". (B2E861A9-2F8C-4CFD-A4E8-81E0EEC24C83, WinVistaSP2 Computer Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Disabled". (17F66BBA-F04D-42D9-8A78-29C2CFF0194E, WinVistaSP2 Computer Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Disabled". (09549BC9-BF0E-4A3F-96A3-23141FC53890, WinXPSP3 Computer Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Disabled". (8B6C4796-4F9D-410B-9B2C-A2E8EDD2E8FC, WinXPSP3 Computer Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (BD798E71-1F74-4EEC-B4BA-11BC05A6094E, WS2003SP2 Domain Controller Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (98C3AEC7-6219-4E10-B744-CD95F5BE09EB, WS2003SP2 Domain Controller Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (3D5D72CF-42E9-40FE-9B01-1E5C20BE0BF3, WS2003SP2 Member Server Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (180D2B2A-40DA-42FF-B96D-D49A9E195C33, WS2003SP2 Member Server Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (0E2CA1BF-F565-48E1-9802-D577FEA4DDD7, WS2008SP2 Domain Controller Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (EE6ED113-737A-43A1-A415-86786DB59534, WS2008SP2 Domain Controller Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (B96A6BDC-1E8E-4EC1-A447-6D564A340EA6, WS2008SP2 Member Server Security Compliance, 1.0)
  • Configure the "RPC Endpoint Mapper Client Authentication" setting to "Not Configured". (22BED2FC-6EA9-4BEC-9F8A-66D476C863B2, WS2008SP2 Member Server Security Compliance, 1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.2.3.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.2.3.2.1_, The Center for Internet Security Microsoft Windows 7 Level 1 + BitLocker Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.2.3.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.2.3.2.2_, The Center for Internet Security Microsoft Windows 7 Level 1 + BitLocker Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.2.3.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.2.3.2.1_, The Center for Internet Security Microsoft Windows 7 Level 1 Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.1.2.3.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.1.2.3.2.2_, The Center for Internet Security Microsoft Windows 7 Level 1 Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.4.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.4.2.1_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.4.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.4.2.2_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Domain Controller Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.4.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.4.2.1_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Member Server Benchmark, 2.1.0)
  • Title: Set 'RPC Endpoint Mapper Client Authentication' to 'Enabled' Description: If you enable this policy setting, client computers that communicate with this computer are forced to provide authentication before RPC communication can be established. By default, RPC clients do not use authent… (Rule: xccdf_org.cisecurity.benchmarks_rule_1.2.1.4.2_Set_RPC_Endpoint_Mapper_Client_Authentication_to_Enabled Artifact Expression: xccdf_org.cisecurity.benchmarks_ae_1.2.1.4.2.2_, The Center for Internet Security Microsoft Windows Server 2008 Level 1 Member Server Benchmark, 2.1.0)
  • The "RPC Endpoint Mapper Client Authentication" machine setting should be configured correctly. Technical Mechanisms: Computer Configuration\Administrative Templates\System\Remote Procedure Call\RPC Endpoint Mapper Client Authentication HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows NT\Rpc … (CCE-10715-1, Common Configuration Enumeration List, Combined XML: Microsoft Windows Server 2008 R2, 5.20130214)
  • RPC Endpoint Mapper Client Authentication should be enabled or disabled as appropriate. Technical Mechanisms: (1) HKLM\Software\Policies\Microsoft\Windows NT\Rpc\EnableAuthEpResolution (2) Computer Configuration\Administrative Templates\System\Remote Procedure Call\RPC Endpoint Mapper Client Authe… (CCE-8151-3, Common Configuration Enumeration List, Combined XML: Windows Server 2003, 5.20130214)
  • RPC Endpoint Mapper Client Authentication should be enabled or disabled as appropriate. Technical Mechanisms: (1) HKLM\Software\Policies\Microsoft\Windows NT\Rpc\EnableAuthEpResolution (2) Computer Configuration\Administrative Templates\System\Remote Procedure Call\RPC Endpoint Mapper Client Authe… (CCE-8572-0, Common Configuration Enumeration List, Combined XML: Windows Server 2008, 5.20130214)