diff --git a/src/rootcheck/db/cis_win2016_domainL1_rcl.txt b/src/rootcheck/db/cis_win2016_domainL1_rcl.txt
index 689529af3..25ffcf746 100644
--- a/src/rootcheck/db/cis_win2016_domainL1_rcl.txt
+++ b/src/rootcheck/db/cis_win2016_domainL1_rcl.txt
@@ -38,7 +38,7 @@ r:HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System -
 #
 #2.3.1.4 Ensure 'Accounts: Limit local account use of blank passwords to console logon only' is set to 'Enabled'
 [CIS - Microsoft Windows Server 2016 - 2.3.1.4 Ensure 'Accounts: Limit local account use of blank passwords to console logon only' is set to 'Enabled'] [any] [https://workbench.cisecurity.org/benchmarks/515]
-r:HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Netlogon\Parameters -> MaximumPasswordAge -> 0;
+r:HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa -> LimitBlankPasswordUse -> 0;
 #
 #
 #2.3.2.1 Ensure 'Audit: Force audit policy subcategory settings to override audit policy category settings' is set to 'Enabled'