Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Microsoft Windows: MS Security Guide: WDigest Authentication
Information
Severity
Severity
Informational
Family
Family
Policy
CVSSv2 Base
CVSSv2 Base
0.0
CVSSv2 Vector
CVSSv2 Vector
AV:L/AC:H/Au:S/C:N/I:N/A:N
Created
Created
5 years ago
Modified
Modified
5 years ago
Summary
This test checks the setting for policy 'WDigest Authenticationr' on Windows hosts (at least Windows 7). When WDigest authentication is enabled, Lsass.exe retains a copy of the users plaintext password in memory, where it can be at risk of theft. Microsoft recommends disabling WDigest authentication unless it is needed. If this setting is not configured, WDigest authentication is disabled in Windows 8.1 and in Windows Server 2012 R2 it is enabled by default in earlier versions of Windows and Windows Server.