752e0588-decf-451b-9fef-cc3235765d54
An unauthorized user could anonymously list account names and shared resources and use the information to attempt to guess passwords or perform social-engineering attacks.
To fix this configure the policy value for
Computer Configuration
|_ Windows Settings
|_ Security Settings
|_ Local Policies
|_ Security Options
|_ Network access: Do not allow anonymous enumeration of SAM accounts to "Enabled".
STIG Desktop:
W11: https://www.stigviewer.com/stig/microsoft_windows_11/2024-06-10/finding/V-253453
W10: https://www.stigviewer.com/stig/microsoft_windows_10/2024-06-13/finding/V-220929 / https://www.stigviewer.com/stig/windows_10/2021-08-18/finding/V-220929
Server:
2022: https://www.stigviewer.com/stig/microsoft_windows_server_2022/2024-06-14/finding/V-254466
2019: https://www.stigviewer.com/stig/windows_server_2019/2020-06-15/finding/V-93291 / https://www.stigviewer.com/stig/microsoft_windows_server_2019/2024-06-14/finding/V-205914
2016: https://www.stigviewer.com/stig/microsoft_windows_server_2016/2024-02-21/finding/V-225045 / https://www.stigviewer.com/stig/windows_server_2016/2020-06-16/finding/V-73667
NIST 800-53: AC-6(10),
NIST 800-171 rev2: 3.1.7
NIST 800-171 rev3: 03.01.07.a
NIST 800-171A: 3.1.7[a], 3.1.7[b], 3.1.7[c], 3.1.7[d]
NIST 800-171A Rev3: A.03.01.07.a
OWASP Top 10 v2021: A01:2021
CSCv6: 16
MITRE Att&ck: T1135, T1087, T1046
CMMC v2 L2: AC.L2-3.1.7, AC.L2-3.1.7
CMMC v2.1 L2: AC.L2-3.1.7, AC.L2-3.1.7