disbale Network session enumeration by gpo

Yazan M. Mashal 0 Reputation points


Kindly i need the assistance

By default, Windows computers allow any authenticated user to enumerate network sessions to it. Disabling Net Session Enumeration removes the capability for any user to enumerate net session info.


Yazan MAhsal

Windows Server 2019
Windows Server 2019
A Microsoft server operating system that supports enterprise-level management updated to data storage.
3,440 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. JimmySalian-2011 41,916 Reputation points

    @Yazan M. Mashal check this GPO settings and test in a Dev/Test Environment before you implement on the prod env - https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/network-access-do-not-allow-anonymous-enumeration-of-sam-accounts-and-shares

    Also there will be implications on the Domain Trusts so test accordingly.

    Hope this helps.



    Please accept as answer and do a Thumbs-up to upvote this response if you are satisfied with the community help. Your upvote will be beneficial for the community users facing similar issues.

    0 comments No comments

  2. Yazan M. Mashal 0 Reputation points


    thank you, i found this article is it correct or i need to use your solution.



    0 comments No comments