Windows Startup Registry Entries Allowed - HP ProCurve NAC 800 User Manual

Tests Help
Security Settings – Windows
Enable "Accounts: Limit local account use of blank passwords to console
■
logon only"
http://www.microsoft.com/resources/documentation/IIS/6/all/proddocs/
en-us/Default.asp?url=/resources/documentation/IIS/6/all/proddocs/en-us/
636.asp
What Do I Need to Do?: To select the security policies:
1. Select Start>>Settings>>Control Panel>>Administrative Tools.
Double-click Local Security Policy.
2.
Double-click Local Policies.
3.
4. Double-click Security Options.
5. Double-click a security policy.
6. Select Enabled or Disabled.
Click OK.
7.
8. Close the Local Security Settings window.
Close the Administrative Tools window.
9.

Windows Startup Registry Entries Allowed

Description: This test verifies that the endpoint attempting to connect to your system
does not contain non-compliant registry entries in the run and runOnce Windows
registry keys.
Test Properties: Enter a list of registry key and values that are allowed in the run and
runOnce Windows registry keys. If the endpoint has any other values in those keys,
the test will fail. Separate entries by semicolons in the format <key> or
<key>::<value>.
For example:
updater::C:\Program Files\Common files\Updater\wupdater.exe
will allow Windows update to run on startup.
How Does this Affect Me?: The Microsoft Windows Registry contains information
that Windows uses during normal operations, including system options, property
settings, applications installed, types of documents each application can create,
ports used, and so on. Information is stored in keys, such as run and runOnce. The
B-32