plq
asked on
Null Session Shares not working in Windows Server 2008
I'm using null session shares to write data back from an application launched onto an end user cpu with WMI
On windows 2003 and XP etc it works fine, but on Windows 2008 we get "Access Denied" even though "everyone" and "anonymous logon" have full control over the null session share and its folders.
Is there something special I need to do to allow null session shares to work on Windows 2008 ?
thanks
On windows 2003 and XP etc it works fine, but on Windows 2008 we get "Access Denied" even though "everyone" and "anonymous logon" have full control over the null session share and its folders.
Is there something special I need to do to allow null session shares to work on Windows 2008 ?
thanks
ASKER
OK thanks for the suggestion, but none of the ideas on there worked.
We've always been able to get to c$, just not a null session share running from a process under SYSTEM.
We've always been able to get to c$, just not a null session share running from a process under SYSTEM.
i have found this:
http://technet.microsoft.com/en-us/library/cc753731.aspx
in which:
You cannot modify the access permissions of folders or volumes that are shared for administrative purposes, such as C$ and ADMIN$.
http://technet.microsoft.com/en-us/library/cc753731.aspx
in which:
You cannot modify the access permissions of folders or volumes that are shared for administrative purposes, such as C$ and ADMIN$.
ASKER
This is a null session share of a share we created, not an administrative ($) share.
Anyone ??
Anyone ??
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
thanks we're looking into this today and tomorrow..
We have tried all of the above suggestions. We are using a domain controller and are affecting these changes in the GPO for the default controller. A networked media streamer is trying to access files but can not enumerate the shares that have been opened to anonymous (null) sessions - it worked fine under Windows Server 2003 R2 so there is something that Microsoft definitely changed here. I attached the export list from the security options and user rights below. My understanding is that these override whatever is set as a "local computer" setting.
user-rights.txt
security-options.txt
user-rights.txt
security-options.txt
have a look here:
http://social.technet.microsoft.com/Forums/en-US/winserversecurity/thread/27cf6c62-7134-41fd-94b5-b7d311fc49ae
-psantiangeli