Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 158
  • Last Modified:

How do I disable anonymous access to my NFTS shares on my windows 2008 servers?

Had a security professional come in and he stated that we had some access security problems; in particular the NTFS shares were allowing "anonymous login's".    I need to disable that function, however I have been unable to find out where or how to do it.

Can anyone give me the steps to do that?
0
misterd
Asked:
misterd
1 Solution
 
Cliff GaliherCommented:
It is just a user on the security tab of the files and folders, and is not a default. So someone added it at some point.
0
 
andreasSystem AdminCommented:
to remove it just remove guest access to the shares and disable the guest account if you really dont need it for a special purpose.
0
 
Don S.Commented:
Everyone = anonymous.  So look for any permissions for Everyone.  He may also be commenting on the common practice of granting Everyone full permissions at the share level.  You could change that to "authenticated users" instead on the share level.  That's on the sharing tab not security tab.
0
Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as high-speed processing of the cloud.

 
McKnifeCommented:
Why don't you ask that security expert for details?
Anonymous is not the same as everyone. Using everyone in the share permissions does not mean anonymous access is allowed - that was the case with windows 2000, but not any more since win2003.
0
 
Lionel MMSmall Business IT ConsultantCommented:
Go to the share in question, click on folder properties (right click on folder and then properties), click on the sharing tab, click on sharing or advanced sharing button, then click on add. Then type in "anonymous logon" and then OK and then under the permission select the "Deny" column and deny anonymous access to that share. You will get a warning, read it carefully, and then click OK and test to make sure that making this change will not affect normal operations.
ee-anonymous-acess-warning.jpg
ee-anonymous-acess.jpg
0
 
misterdAuthor Commented:
Thks that worked for me and the JPG images were helpful as well
0
 
Lionel MMSmall Business IT ConsultantCommented:
glad to help--merry Christmas and happy new year
0
 
McKnifeCommented:
misterd, I am unsure that your issue is solved.
Please ask your consultant to specify what he meant by anonymous access - because by default, anonymous will not have access, as I told you before. Unless someone had added anonymous explicitly by name, it would not have access - and you would have seen that.
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now