Anonymous enumeration of SAM accounts must not be allowed.

An XCCDF Rule

Details
Profiles

Description

Anonymous enumeration of SAM accounts allows anonymous log on users (null session connections) to list all accounts names, thus providing a list of potential points to attack the system.

ID: SV-253453r991589_rule
Version: WN11-SO-000145
Severity: High
References: CCI-000366
Updated: 24 days ago

Remediation Templates

Configure the policy value for Computer Configuration >> Windows Settings >> Security Settings >> Local Policies >> Security Options >> "Network access: Do not allow anonymous enumeration of SAM accounts" to "Enabled".

Anonymous enumeration of SAM accounts must not be allowed.

Description

Remediation Templates

A Manual Procedure