WN16-CC-000080 - Insecure logons to an SMB server must be disabled.

Information

Insecure guest logons allow unauthenticated access to shared folders. Shared resources on a system must require authentication to establish proper access.

Solution

Configure the policy value for Computer Configuration >> Administrative Templates >> Network >> Lanman Workstation >> 'Enable insecure guest logons' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2016_V2R9_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-224920r991589_rule, STIG-ID|WN16-CC-000080, STIG-Legacy|SV-88159, STIG-Legacy|V-73507, Vuln-ID|V-224920

Plugin: Windows

Control ID: fa5f088d2787ba0b8a05188f3227b7507ed154dfc14a8e70c237f2c0604b6e97