Hello,
I am trying to create a secure SMB share on my FreeNAS 11.1 U4 machine. My Nessus scanner keeps telling me it can connect to the share with a guest account(See below). However, SMB share is locked down to Domain Users and I have Guest Allowed turned off. Has anyone experienced this or have any idea where I can look to troubleshoot this.
Thanks!
Microsoft Windows SMB Guest Account Local User Access
Description
The remote host is running one of the Microsoft Windows operating systems or the SAMBA daemon. It was possible to log into it as a guest user using a random account.
Solution
In the group policy change the setting for 'Network access: Sharing and security model for local accounts' from 'Guest only - local users authenticate as Guest' to 'Classic - local users authenticate as themselves'. Disable the Guest account if applicable.
If the SAMBA daemon is running, double-check the SAMBA configuration around guest user access and disable guest access if appropriate
I am trying to create a secure SMB share on my FreeNAS 11.1 U4 machine. My Nessus scanner keeps telling me it can connect to the share with a guest account(See below). However, SMB share is locked down to Domain Users and I have Guest Allowed turned off. Has anyone experienced this or have any idea where I can look to troubleshoot this.
Thanks!
Microsoft Windows SMB Guest Account Local User Access
Description
The remote host is running one of the Microsoft Windows operating systems or the SAMBA daemon. It was possible to log into it as a guest user using a random account.
Solution
In the group policy change the setting for 'Network access: Sharing and security model for local accounts' from 'Guest only - local users authenticate as Guest' to 'Classic - local users authenticate as themselves'. Disable the Guest account if applicable.
If the SAMBA daemon is running, double-check the SAMBA configuration around guest user access and disable guest access if appropriate
