RE: LDAP Information

Tech-Archive recommends: Speed Up your PC by fixing your registry

From: Nir Valtman <NirValtman@xxxxxxxxxxxxxxxxxxxxxxxxx>
Date: Sat, 5 Sep 2009 08:51:01 -0700

Hi,

I'm familiar with this founding.
Go to "default domain controllers policy" and then to
Computer Configuration\Windows Settings\Security Settings\Local
Policies\Security Options\
change the following settings to ENABLED:
1. Network access: Do not allow anonymous enumeration of SAM accounts
2. Network access: Do not allow anonymous enumeration of SAM accounts and
Shares

That's it, you fixed the founding.
--

Nir Valtman
http://blogs.microsoft.co.il/blogs/valtmanir/
---------------------------
Do you think that information security is expansive? Try to ignore it
.

References:
- LDAP Information
  - From: BarbS

Prev by Date: RE: Active desktop in group Policy
Next by Date: Re: Guest account limitation strategies?
Previous by thread: Re: LDAP Information
Next by thread: RE: LDAP Information
Index(es):
- Date
- Thread

Relevant Pages

Re: LookupAccountName behavior dependent upon operating system of global catalog (GC)
... I checked the policy settings you noted earlier. ... Network access: Do not allow anonymous enumeration of SAM accounts - ENABLED ...
(microsoft.public.platformsdk.security)
Re: Problem Disabling "Null Session" on W2K3
... Go to Administrative Tools --> Local Security ... Network Access: Do not allow anonymous enumeration of SAM accounts: Enabled ...
(Security-Basics)
Need Help with hackers
... Network Access: do not allow anonymous enumeration of SAM accounts and Shares ...
(microsoft.public.win2000.general)
Re: It is impossible to add a shared folder
... Network access: Do not allow anonymous enumeration of SAM accounts and ... When you try to see ALL shared folders of this computer, ...
(microsoft.public.windowsxp.network_web)