CIS Microsoft Windows 10 Enterprise Release 1909 Benchmark

Default Value:

Disabled. (The built-in Administrator account runs all applications with full administrative privilege.)

References:

1. CCE-35338-3

CIS Controls:

Version 6

5.1 Minimize And Sparingly Use Administrative Privileges Minimize administrative privileges and only use administrative accounts when they are required. Implement focused auditing on the use of administrative privileged functions and monitor for anomalous behavior.

Version 7

4.4 Use Unique Passwords Where multi-factor authentication is not supported (such as local administrator, root, or service accounts), accounts will use passwords that are unique to that system.

281 | P a g e