|Restrict Anonymous User Access (Windows NT/2000/XP)|
Category: Home > Security > Network
Windows has a feature where anonymous users can list domain user names and enumerate share names. Users who want enhanced security may optionally restrict this functionality.
Open your registry and find the key below.
Create a new DWORD value, or modify the existing value, named "RestrictAnonymous" and set it to either "0", "1" or "2" from the list below.
Restart Windows for the change to take effect.
- 0 - Allow anonymous users
- 1 - Restrict anonymous users
- 2 - Allow users with explicit anonymous permissions
Note: Users must be using a minimum of Windows NT 4.0 with Service Pack 3 for this setting to be enabled.
|(Default)||REG_SZ||(value not set)|
System Key: [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA]|
Type: REG_DWORD (DWORD Value)
Value: (0 = allowed, 1 = restricted, 2 = require anonymous permissions)
Disclaimer: Modifying the registry can cause serious problems that may require you to reinstall your operating system. We cannot guarantee that problems resulting from modifications to the registry can be solved. Use the information provided at your own risk.
Last Modified: June 11, 2002