report on anonymous cifs users | NetApp | Page 1

half finch Apr 24, 2025, 7:01 PM

#

I want to disable access to anonymous users, but would like to see if there is a way to monitor for any connections that would be impacted. Is there a way to do this?

Reference:
https://docs.netapp.com/us-en/ontap/smb-admin/configure-access-restrictions-anonymous-users-task.html

Configure access restrictions for anonymous users

By default, an anonymous, unauthenticated user (also known as the null user) can access certain information on the network. You can use a SMB server option t...

hollow hemlock Apr 24, 2025, 7:13 PM

#

in a domain environment there should be no impact, as usually every user is automatically authenticated You can use cifs session show -user-type anonymous-user to see if there are any active null sessions

#

see here

vserver cifs session show

Display established CIFS sessions

loud arrow Apr 24, 2025, 8:27 PM

#

disabling access is easy
vserver cifs options modify -restrict-anonymous
and we also always add no-enumeration

half finch Apr 24, 2025, 10:38 PM

#

yeah, I am thinking of removing abe because of performance issues on two volumes/shares. for the session show, would DFS ever need to use anonymous prior to mounting?

#

report on anonymous cifs users

#report on anonymous cifs users