Back
  • Misconfig Name
  • Built-in Administrator Account is not disabled
  • Description
  • The built-in administrator account cannot be locked out, regardless of how many times an attacker might use an invalid password. This makes the administrator account an easy target for brute-force attacks that attempt to guess the password.
  • Severity
  • Critical
  • Category
  • User Account Management
  • Resolution
  • Follow the below steps in GPO to resolve the misconfiguration. Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Accounts: Administrator account status" to "Disabled".
  • Reboot Required
  • No