Detections
Analytics

1.209 WN10-SO-000150

Information

Anonymous enumeration of shares must be restricted.

GROUP ID: V-220930RULE ID: SV-220930r958524

Allowing anonymous logon users (null session connections) to list all account names and enumerate all shared resources can provide a map of potential points to attack the system.

Solution

Configure the policy value for

Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> 'Network access: Do not allow anonymous enumeration of SAM accounts and shares'

to 'Enabled'.

See Also

https://workbench.cisecurity.org/benchmarks/23869

Item Details

Category: SYSTEM AND COMMUNICATIONS PROTECTION

References: 800-53|SC-4, CCI|CCI-001090, Rule-ID|SV-220930r958524_rule, STIG-ID|WN10-SO-000150, Vuln-ID|V-220930

Plugin: Windows

Control ID: 80c877e4346adc4cb2a32b9ecaf9548b28eab1bc0f565f3d279d105cf1a45bac