disabling enumeration of sid posted on Monday, March 13, 2006
Right-click the domain, and select Properties.
On Group Policy tab, click the Default Domain Policy, and select Edit.
Drill-down to Computer Configuration Windows Settings Security Settings Local Policies Security Options.
Double-click Additional Restrictions For Anonymous Connections, and select the Define This Policy option.
Select Do Not Allow Enumeration Of SAM Accounts And Shares from the drop-down list.
Click OK, and close the console.
Go to Start Run, enter cmd, and click OK.
At the command prompt, enter gpupdate, press [Enter], enter exit, and press [Enter].
--
Open the Active Directory Users And Computers console.
Right-click the domain, and select Properties.
On Group Policy tab, click the Default Domain Policy, and select Edit.
Drill-down to Computer Configuration Windows Settings Security Settings Local Policies Security Options.
Double-click Additional Restrictions For Anonymous Connections, and select the Define This Policy option.
Select Do Not Allow Enumeration Of SAM Accounts And Shares from the drop-down list.
Click OK, and close the console.
Go to Start Run, enter cmd, and click OK.
At the command prompt, enter gpupdate, press [Enter], enter exit, and press [Enter].
--