Hi. Please let me know how to create a GPO on Windows server 2008 to edit the registry to get rid of the following vulnerability that was found by an Altiris vulnerability scan:
Microsoft Windows SMB Registry : Winlogon Cached Password Weakness
User credentials are stored in memory.
The registry key HKLM\Software\Microsoft\Wi
onsCount is non-null. It means
that the remote host locally caches the passwords of the users when
they log in, in order to continue to allow the users to log in in the
case of the failure of the PDC.
use regedt32 and set the value of this key to 0