UCF STIG Viewer Logo

Anonymous enumeration of SAM accounts will not be allowed.


Overview

Finding ID Version Rule ID IA Controls Severity
V-26283 3.019 SV-33732r1_rule ECSC-1 High
Description
This is a Category 1 finding as it allows anonymous logon users (null session connections) to list all account names, thus providing a list of potential points to attack the system.
STIG Date
Win2k8 R2 Audit 2013-06-10

Details

Check Text ( None )
None
Fix Text (F-29359r1_fix)
Configure the policy values for Computer Configuration -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> “Network access: Do not allow anonymous enumeration of SAM accounts” to “Enabled".