PingSentry   |   Blog   |   System32   |   GitHub   |   Free tools
Server Monitoring with EventSentry
  • Features
    EventSentry v5.0 New Features
    Event Log Monitoring SIEM to the core
    Validation Scripts
    Health Monitoring
    Compliance
    ADMonitor
    ADMonitor
    Reporting
    Log File Monitoring
    Network
    Enviroment
    Environment
    Notifications
    Consolidation
    EventSentry_logo_color_badge

    Why EventSentry?
  • Solutions
    Finance & Banking
    Event Log Monitoring
    Government
    CMMC
    Healthcare
    HIPAA
    Education
    IT Security
  • Downloads
    Evaluation
    Download EventSentry
    EventSentry Light
    EventSentry Light
    Admin Assistant
    Admin Assistant
    SysAdmin Tools
    Roadmap
    Roadmap
    EventSentry History
    Version History


    FREE
    Fully Functional Evaluation
    Download Now
  • Support
    Knowledge Base
    Knowledge Base
    How-to Guides
    EventSentry Documentation
    Documentation
    How To's
    Tutorials
    EventSentry Screencasts
    Screencasts
    EventSentry Support
    Request Support
    EventSentry Documentation

    EventSentry v5.0.1 Documentation
  • Purchase


    Product Sheet
    EventSentry Pricing
    Pricing
    EventSentry Quote
    Request a quote
    Request Demo
    Schedule a demo
    Testimonials
    Testimonials
Login Download

Network Access: Do not allow anonymous enumeration of SAM accounts and shares

752e0588-decf-451b-9fef-cc3235765d54

An unauthorized user could anonymously list account names and shared resources and use the information to attempt to guess passwords or perform social-engineering attacks.

https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares

Remediation

Remediation via GPO:
From Computer Configuration / Windows Settings / Security Settings / Local Policies / Security Options: Network Access: Do not allow anonymous enumeration of SAM accounts Should be set to Enabled.

Mor information: https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares

Stig Desktop: https://www.stigviewer.com/stig/windows_10/2021-03-10/finding/V-220930
Stig Server: https://www.stigviewer.com/stig/windows_2008_member_server/2018-03-07/finding/V-1093
https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93537
https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93291



Tags

stig-high-server stig-high-desktop bestpractice-desktop bestpractice-server compliance-desktop compliance-server server desktop security-desktop security-server nist800-171-desktop nist800-171-server cmmc-l1-desktop cmmc-l1-server cmmc2-l1-desktop cmmc2-l1-server
  • Knowledge Base
  • Documentation
  • Tutorials
  • Screencasts
  • Validation Scripts
  • Support Center

Resources
  • Tutorials
  • Screencasts
  • Knowledge Base
  • Blog
  • Solutions
  • Support Center
  • MyEventlog
  • System32
About
  • About Us
  • Live Demo
  • In the Press
  • Testimonials
  • Our Customers
  • Our SysAdmin Promise
  • NETIKUS.NET ltd
Contact Us
  • 1-877-NETIKUS
  • 1-312-624-7698
  • sales@netikus.net
  • support@netikus.net

MON-FRI, 8AM-5PM CST


Social
  • EventSentry Facebook EventSentry LinkedIn EventSentry Twitter EventSentry YouTube
Copyright (c) 2002-2023 NETIKUS.NET ltd | Server Monitoring | Event Log Monitoring | Network Monitoring

NETIKUS.NET ltd is a software development company based in Chicago, IL
All rights reserved. This website www.eventsentry.com is part of the www.netikus.net network

XHTML   |   Privacy Policy