WN19-CC-000070 - Windows Server 2019 insecure logons to an SMB server must be disabled.

Information

Insecure guest logons allow unauthenticated access to shared folders. Shared resources on a system must require authentication to establish proper access.

Solution

Configure the policy value for Computer Configuration >> Administrative Templates >> Network >> Lanman Workstation >> 'Enable insecure guest logons' to 'Disabled'.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_MS_Windows_Server_2019_V3R2_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-205861r991589_rule, STIG-ID|WN19-CC-000070, STIG-Legacy|SV-103327, STIG-Legacy|V-93239, Vuln-ID|V-205861

Plugin: Windows

Control ID: c4f812b16bc489f1a2d9d038e659bd0e9db0bc52bf38366a85521a16f2eefd8f