Windows XP Simple File Sharing & Novell Workstation Manager

OK, here's a little brain-teaser for those who thinks he already knows this subject inside & out.

Roaming Profile is enabled on the Novell 6.0 server.  The client has the Novell Client 4.9sp1 installed with the Novell Workstation Manager making this "roaming" feature possible on Windows XP.

My Goal:
To turn off Windows XP SIMPLE FILE SHARING for good which is turned on by default everytime a logoff is made by a Novell Roaming Profile User Account.  And Yes, it is a workgroup environment (non-domain) where SFS is turned on by default.

Why am I trying to turn Simple File Sharing off?
Since it prevents you from connecting to the workstation's admin share remotely. Such as \\computername\c$

So any "experts" out there who can offer solid advice???
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Fatal_ExceptionSystems EngineerCommented:
How about a batch file that disables SFS?

The syntax for using NoSFS.bat is:

NoSFS ComputerName1 [ComputerName2 ... ComputerNamen]

where ComputerNameX is a Windows XP Professional computer name in your network.

NoSFS.bat contains:

@echo off
If {%1}=={} @echo Syntax: NoSFS ComputerName1 [ComputerName2 ... ComputerNamen]&goto :EOF
if {%1}=={} endlocal&goto :EOF
set computer=%1
set computer=%computer:"=%
set key="\\%computer%\HKLM\SYSTEM\CurrentControlSet\Control\Lsa"
if /i "%computername%" EQU "%computer%" set key="HKLM\SYSTEM\CurrentControlSet\Control\Lsa"
@echo reg add %key% /v forceguest /t REG_DWORD /d 00000000 /f
reg add %key% /v forceguest /t REG_DWORD /d 00000000 /f
goto :Next

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Aland CoonsSystems EngineerCommented:
Have you tried a local admin logon to disable SFS so the default local is "turned OFF by default"?
Aland CoonsSystems EngineerCommented:
If I understand however "simple sharing" only permits Guest-based connections (no password).

The system automatically creates hidden "administrative shares" for its logical drives C:, D:, and so forth which it names C$, D$ and so forth. It also creates the admin$ hidden share for to the \winnt folder. These shares are designed for remote access support by domain administrators. By default, if you delete these admin shares, they will be recreated when you reboot. To disable permanently so they will not be recreated on the next reboot, use the following Windows NT / Windows 2000 / Windows XP registry hack:

Key: SYSTEM\CurrentControlSet\Services\LanManServer\Parameters
Name: AutoShareServer for servers
Name: AutoShareWks for workstations
Value: 0;EN-US;Q314984
Cloud Class® Course: SQL Server Core 2016

This course will introduce you to SQL Server Core 2016, as well as teach you about SSMS, data tools, installation, server configuration, using Management Studio, and writing and executing queries.

Fatal_ExceptionSystems EngineerCommented:
It is really not recommended that you disable the administrative shares...  At least, as far as this administrator is concerned..   Just my opinion, of course..  :)

There is a reg hack that will also do disable SFS:

;Do not use Simple File Sharing
exhaustAuthor Commented:
Alandc and Fatal Exception,

Yes, I have tried local admin logon to disable Simple File Sharing.    You're starting to miss the point to the "goal".  I'm not trying to disable the administrative shares.

If you guys wanna try connecting to \\computername\c$ while SFS is turned on, you'll get as far as the prompt for the admin username and password but you'll never access the C:\ drive remotely.

However, disabling SFS allows you to access \\computername\c$ no problemo!  And make it act more like Windows 2000.

Fatal_ExceptionSystems EngineerCommented:
I think that was what I was trying to point out in my post...  did you try that reg hack or the script yet?
Aland CoonsSystems EngineerCommented:

At your logon prompt click "workstation" and logon locally and set your desired settings (reg hack or script)?

Does that stick after a Novell logon/logoff?
Aland CoonsSystems EngineerCommented:
I do understand what you are trying to do.
It's similar to this question.

only with the added complication that NOVELL services keeps turning it back on.

My idea is that having it OFF in the admin/default profile with somehow retrian the NOVELL client not to turn it back on.

I have already searched the Novell Knowledgebase trying to find a clue there too.
Fatal_ExceptionSystems EngineerCommented:
I would think that setting the script to run after Novell has authenticated should do the trick...  
exhaustAuthor Commented:
I haven't tried your script yet.  But I will just join it to an Active Directory Domain where SFS is still turned on but you can connect to the admin share for some funny reason.

Appreciate your suggestion on doing the script thing though.  Although that will really complicate my situation.

Thanks to everyone's word of advice
Fatal_ExceptionSystems EngineerCommented:
Thanks, and a Happy New Year to you and yours!

It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Fonts Typography

From novice to tech pro — start learning today.