Detections
Analytics
WN25-SO-000230 - Windows Server 2025 must not allow anonymous enumeration of shares.
Information
Allowing anonymous logon users (null session connections) to list all account names and enumerate all shared resources can provide a map of potential points to attack the system.Solution
Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> Network access: Do not allow anonymous enumeration of SAM accounts and shares to 'Enabled'.See Also
https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2025_V1R1_STIG.zip
Item Details
Audit Name: DISA Microsoft Windows Server 2025 STIG v1r1
Category: SYSTEM AND COMMUNICATIONS PROTECTION
References: 800-53|SC-4, CAT|I, CCI|CCI-001090, Rule-ID|SV-278217r1181357_rule, STIG-ID|WN25-SO-000230, Vuln-ID|V-278217
Plugin: Windows
Control ID: 80bd909c4a68383e53ef66c581d13895d6bfd15864956417100289ab5d251aed