1
0
mirror of https://github.com/TommyTran732/Windows-Setup.git synced 2024-06-19 01:45:58 -04:00

More security options

Signed-off-by: Tommy <contact@tommytran.io>
This commit is contained in:
Tommy 2024-04-26 01:37:34 -07:00
parent ce60c9a690
commit f17eb8444f
Signed by: Tomster
GPG Key ID: 555C902A34EC968F

View File

@ -16,6 +16,8 @@ Documentation: https://learn.microsoft.com/en-us/windows/security/application-se
- Microsoft network client: Digitally sign communications (always) -> Enabled
- Microsoft network server: Digitally sign communications (always) -> Enabled
- Network access: Allow anonymous SID/Name translation -> Disabled
- Network security: Do not store LAN Manager hash value on next password change -> Enabled
- Network security: Force logoff when logon hours expire -> Disabled
- Network security: LDAP client signing requirements: Require signing
- Network security: Restrict NTLM: Incoming NTLM traffic -> Deny all accounts
- Network security: Restrict NTLM: NTLM authentication in this domain -> Deny all