[Samba] Help with restrict anonymous = 2

Andrew Bartlett abartlet at samba.org
Mon Jul 23 01:26:07 GMT 2007

On Thu, 2007-07-19 at 10:50 +0100, Plant, Dean wrote:
> I am trying to lock down Samba's null session accessibility by using the
> "restrict anonymous = 2" setting but when I configure this option it
> stops the test XP client from being able to logon in to the domain.
> "restrict anonymous = 1" allows logins to work correctly but Samba still
> shows some account information when checking with the GetAcct tool. I am
> using a Samba 3.0.25b domain configured as a PDC with a test WinXP
> client.
> Is anyone using "restrict anonymous = 2" while still being able to login
> to the Samba domain or I have I gone wrong somewhere?

This won't be possible until Samba4 is available - restrict anonymous =
2 prevents the NT4 domain logon mechanism.

Andrew Bartlett

Andrew Bartlett                                http://samba.org/~abartlet/
Authentication Developer, Samba Team           http://samba.org
Samba Developer, Red Hat Inc.                  http://redhat.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.samba.org/archive/samba/attachments/20070723/244204c3/attachment.bin

More information about the samba mailing list