Link to home
Create AccountLog in
Avatar of syinfra
syinfraFlag for India

asked on

Password can be changed without logining in

Hello,

In our VA Scan done through 3rd party, one of the observation came as Password can be changed without logining in. The solution provided was to set a registry entry to RequireLogonToChangePassword = 1. We are not able to find this entry & need help how to set it up.

Regards
Ashish
Avatar of Shaun Vermaak
Shaun Vermaak
Flag of Australia image

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\
DWORD RequireLogonToChangePassword
ASKER CERTIFIED SOLUTION
Avatar of oBdA
oBdA

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Avatar of oBdA
oBdA

Scan outdated as per Microsoft documentation.