Anonymous LanMan access disabled (Windows)

Module: Network Integrity

Supported Platforms: Windows 2000, Windows 2003, Windows 2008, Windows Vista, Windows XP

This check reports a problem if the Anonymous user has access to LanMan information such as user names and shares.

The following table lists the error message for the check.

Table: Error message for Anonymous LanMan access disabled

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: ESM_ANONYMOUS_LANMAN

Category: Change Notification

  • Windows 2000 (106340)

  • Windows 2003 (206340)

  • Windows 2008 (249340)

  • Windows Vista (229340)

  • Windows XP (201340)

Title: Anonymous LAN Manager information access enabled

Description:Access to LAN Manager information is granted to Anonymous. Remote users can get information about shares and accounts, including the name of a renamed Administrator account. To disable Anonymous LanMan information access, use the rbfix utility that ships with Symantec ESM. Disabling Anonymous LAN Manager information access can prevent legitimate information gathering by some remote configuration tools.

Severity: yellow-1

Correctable: true

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [%s]