Check or Attack Name: Logon Hours Not Set

A user has been found with no logon hours set. This setting allows the user to log on at any time. If logon hours are set, it may inhibit certain internal and external attacks.

To set logon hours for the user, follow these steps:

1. Open User Manager for Domains. From the Windows NT Start menu, select Programs, Administrative Tools (Common), User Manager.
2. Select the user from the list.
3. From the User menu, select Properties to display the User Properties dialog box.
4. Select Hours. By default, all hours will be enabled.
5. Select the times and days when the user should not be allowed to log on.
6. Click Disallow.
7. Repeat steps 5 and 6 until the logon hours meet your security policy.