Check or Attack Name: DCOM Auth Level

The DCOM default authentication level has been detected to be below Connect. If the authentication level is None, then any user can access any object on the system without authentication.

Fortify DCOM's default permissions so that objects continue to function under tightened security:

1. Run the dcomcnfg program in the %SystemRoot%/System32 folder.
2. Select the Default Properties tab.
3. Select a Default Authentication level of at least Connect. Note: For sensitive systems, an authentication level of Packet Privacy is recommended.
4. Click OK.
5. Verify that DCOM objects still function properly after making changes.

Microsoft Knowledge Base Article Q176799, INFO: Using DCOM Config (DCOMCNFG.EXE) on Windows NT, http://support.microsoft.com/support/kb/articles/q176/7/99.asp