Note: Null session is a NETBIOS connection using zero length string
for username, domain, and password
Both of following must be done
(1) set registry
- run registry editor
- Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\LSA.
- From the Edit menu, select Add Value to display the Add Value dialog box.
- In the Value Name field, type RestrictAnonymous.
- Select REG_DWORD as the Data Type.
- Click OK to display the DWORD Editor.
- In the Data field, type 2. (Ignore the Radix setting.)
- Click OK. Registry Editor adds the key to the registry.
- Reboot the system to apply the changes.
(2) update local security policy
- open the Local Security Policy console
- Security Settings -> Local Policies -> Security Options
- look for "Additional restrictions for anonymous connections"
- Under Local policy setting, select "No access without explicit anonymous permissions"