Cain and Able - anonymous enumeration of sam acounts

Howell · Sep 2, 2009

What do you know about Cain and Able and stopping "anonymous enumeration of sam acounts"? I have the GP enabled (Network access: Do not allow anonymous enumeration of SAM accounts) but I'm still able to enumerate. Any suggestions?

Mercutio · Sep 3, 2009

Are you looking at one Group Policy setting or a Resultant set of policies? Are you looking at the RSoP for a Domain User account or an Administrator account?

Howell · Sep 3, 2009

Supposedly the information can be obtained with a laptop completely unassociated with the domain but physically connected. I have an appointment to watch the information gathering live but this is what I'm working with at this time.

So user GPs would not apply and additionally the settings that I'm working with are found in computer configuration.

Code:

Network access: Allow anonymous SID/Name translation
Network access: Let everyone's permissions apply to anonymous users
Network access: Do not allow anonymous enumeration of SAM accounts
Network access: Do not allow anonymous enumeration of SAM accounts and shares

I set the group policy and checked it with Group Policy Results. I looks like it should work.

Cain and Able - anonymous enumeration of sam acounts

Howell

Storage? I am Storage!

Mercutio

Fatwah on Western Digital

Howell

Storage? I am Storage!