Microsoft Windows SMB Guest Account Local User Access
High Nessus Plugin ID 26919
SynopsisIt is possible to log into the remote host.
DescriptionThe remote host is running one of the Microsoft Windows operating systems or the SAMBA daemon. It was possible to log into it as a guest user using a random account.
SolutionIn the group policy change the setting for 'Network access: Sharing and security model for local accounts' from 'Guest only - local users authenticate as Guest' to 'Classic - local users authenticate as themselves'. Disable the Guest account if applicable.
If the SAMBA daemon is running, double-check the SAMBA configuration around guest user access and disable guest access if appropriate