vulnerability
Scanning Diagnostics: Unable to authenticate to the WinRM Service
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 1 | (AV:L/AC:H/Au:M/C:N/I:N/A:N) | 2021-11-02 | 2021-11-02 | 2021-11-02 |
Severity
1
CVSS
(AV:L/AC:H/Au:M/C:N/I:N/A:N)
Published
2021-11-02
Added
2021-11-02
Modified
2021-11-02
Description
The following information is for Scan Diagnostic purposes only, and is not indicative of a detected vulnerability.
The scanning user encountered an authentication error when connecting to the WinRM Service.
This can be caused by a number of issues:
- The Credential used may not be valid
- If the Credential is a local admin account it may not have the LocalAccountTokenFilterPolicy registry key added to disable UAC
- The Credential is not part of the required administrator group
WinRM access is required for accurate Windows Policy assessments, it is used to collect information on hardening compliance, amongst other Windows configuration data.
Solution
rapid7-diagnostics-winrm-authentication-error
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.