CUI

USNS MONTFORD POINT - Findings

Back to Ship Export CSV Download POA&M

Showing 4 of 4 findings (filtered) View Documentation Status (90 tracked)

Vuln ID	Severity	Asset	STIG	Title	Status	Doc Status	Assigned To	Actions
V-220918	CAT III	MONT-WS-92040	Microsoft Windows 10 Security Technical ...	The maximum age for machine account passwords must...		-
Check Text This is the default configuration for this setting (30 days). If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SYSTEM\CurrentControlSet\Services\Netlogon\Parameters\ Value Name: MaximumPasswordAge Value Type: REG_DWORD Value: 0x0000001e (30) (or less, excluding 0) Fix Text This is the default configuration for this setting (30 days). Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Domain member: Maximum machine account password age" to "30" or less (excluding 0 which is unacceptable). Finding Details Evaluate-STIG 1.2507.5 (Scan-Windows10_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: FAE72969A576C11785DDAD15FA1C5F2F963658CF ~~~~~ 'Domain member: Maximum machine account password age' is Enabled: (30 or less but not 0) Registry Path: HKLM:\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters Value Name: MaximumPasswordAge Value: 0x0000001e (30) Type: REG_DWORD Source: _Reviewed/MONT-WS-92040/Checklist/MONT-WS-92040_Win10_V3R4_20251023-142421.ckl Scan Date: 2026-01-14T12:57:26.690022 Technology Area: Windows Operating System
V-220918	CAT III	MONT-WS-92010	Microsoft Windows 10 Security Technical ...	The maximum age for machine account passwords must...		-
Check Text This is the default configuration for this setting (30 days). If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SYSTEM\CurrentControlSet\Services\Netlogon\Parameters\ Value Name: MaximumPasswordAge Value Type: REG_DWORD Value: 0x0000001e (30) (or less, excluding 0) Fix Text This is the default configuration for this setting (30 days). Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Domain member: Maximum machine account password age" to "30" or less (excluding 0 which is unacceptable). Finding Details Evaluate-STIG 1.2507.5 (Scan-Windows10_Checks) found this to be NOT A FINDING on 10/23/2025 ResultHash: FAE72969A576C11785DDAD15FA1C5F2F963658CF ~~~~~ 'Domain member: Maximum machine account password age' is Enabled: (30 or less but not 0) Registry Path: HKLM:\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters Value Name: MaximumPasswordAge Value: 0x0000001e (30) Type: REG_DWORD Source: _Reviewed/MONT-WS-92010/Checklist/MONT-WS-92010_Win10_V3R4_20251023-141133.ckl Scan Date: 2026-01-14T12:57:28.689048 Technology Area: Windows Operating System
V-220918	CAT III	MONT-SW-89108	Microsoft Windows 10 Security Technical ...	The maximum age for machine account passwords must...		-
Check Text This is the default configuration for this setting (30 days). If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SYSTEM\CurrentControlSet\Services\Netlogon\Parameters\ Value Name: MaximumPasswordAge Value Type: REG_DWORD Value: 0x0000001e (30) (or less, excluding 0) Fix Text This is the default configuration for this setting (30 days). Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Domain member: Maximum machine account password age" to "30" or less (excluding 0 which is unacceptable). Finding Details Evaluate-STIG 1.2510.0 (Scan-Windows10_Checks) found this to be NOT A FINDING on 12/17/2025 ResultHash: FAE72969A576C11785DDAD15FA1C5F2F963658CF ~~~~~ 'Domain member: Maximum machine account password age' is Enabled: (30 or less but not 0) Registry Path: HKLM:\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters Value Name: MaximumPasswordAge Value: 0x0000001e (30) Type: REG_DWORD Source: MONT-SW-89108_Win10_V3R5_20251217-203019.ckl Scan Date: 2026-03-04T15:25:16.342077 Technology Area: Windows Operating System
V-220918	CAT III	MONT-SW-89134	Microsoft Windows 10 Security Technical ...	The maximum age for machine account passwords must...		-
Check Text This is the default configuration for this setting (30 days). If the following registry value does not exist or is not configured as specified, this is a finding: Registry Hive: HKEY_LOCAL_MACHINE Registry Path: \SYSTEM\CurrentControlSet\Services\Netlogon\Parameters\ Value Name: MaximumPasswordAge Value Type: REG_DWORD Value: 0x0000001e (30) (or less, excluding 0) Fix Text This is the default configuration for this setting (30 days). Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Domain member: Maximum machine account password age" to "30" or less (excluding 0 which is unacceptable). Finding Details Evaluate-STIG 1.2510.0 (Scan-Windows10_Checks) found this to be NOT A FINDING on 12/17/2025 ResultHash: FAE72969A576C11785DDAD15FA1C5F2F963658CF ~~~~~ 'Domain member: Maximum machine account password age' is Enabled: (30 or less but not 0) Registry Path: HKLM:\SYSTEM\CurrentControlSet\Services\Netlogon\Parameters Value Name: MaximumPasswordAge Value: 0x0000001e (30) Type: REG_DWORD Source: MONT-SW-89134_Win10_V3R5_20251217-201218.ckl Scan Date: 2026-03-04T15:25:42.339596 Technology Area: Windows Operating System

CUI