Detections
Analytics
WN11-SO-000150 - Anonymous enumeration of shares must be restricted.
Information
Allowing anonymous logon users (null session connections) to list all account names and enumerate all shared resources can provide a map of potential points to attack the system.Solution
Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> 'Network access: Do not allow anonymous enumeration of SAM accounts and shares' to 'Enabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_11_V2R7_STIG.zip
Item Details
Audit Name: DISA Microsoft Windows 11 STIG v2r7
Category: SYSTEM AND COMMUNICATIONS PROTECTION
References: 800-53|SC-4, CAT|I, CCI|CCI-001090, Rule-ID|SV-253454r1137695_rule, STIG-ID|WN11-SO-000150, Vuln-ID|V-253454
Plugin: Windows
Control ID: d1ef9318cf35dbbdcd878fbc3bba9de9b9545604e4ce83df34a30ad969f6f27d