Security News > 2023 > January > Microsoft locks door to default guest authentication in Windows Pro
Microsoft wants to bulk up the security in Windows Pro editions by ensuring the SMB insecure guest authentication fallbacks are no longer the default setting in the operating system.
The move, which is included in the Windows 11 Insider Preview Build 25276 released this month, means that systems with Windows 10 version 1709 or later and Windows Server 2019, SMB2, and SMB3 will no longer allow by default guest account access to a remote server or for those who provide invalid credentials to fall back to the guest account.
This brings Windows Pro editions in line with the stronger security in Enterprise and Education editions, which stopped allowing the default setting since Windows 10, according to the enterprise software maker.
In another blog post, Microsoft wrote that Windows client and Windows Server haven't allowed guest access or remote users to connect as guest or anonymous users since Windows 2000.
Only third-party remote devices may require guest access by default, but systems running Windows don't.
If a remote device is configured to use guest credentials, the process should be for an administrator to disable guest access to the device and configure the correct authentication and authorization.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/01/17/microsoft_windows_pro_guest/
Related news
- Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel (source)
- Microsoft fixes Windows 10 bug causing apps to stop working (source)
- Microsoft wants $30 if you want to delay Windows 11 switch (source)
- Microsoft delays Windows Recall again, now by December (source)
- Microsoft Delays Windows Copilot+ Recall Release Over Privacy Concerns (source)
- Week in review: Windows Themes spoofing bug “returns”, employees phished via Microsoft Teams (source)
- Microsoft confirms Windows Server 2025 blue screen, install issues (source)
- Microsoft Notepad to get AI-powered rewriting tool on Windows 11 (source)
- Microsoft says recent Windows 11 updates break SSH connections (source)
- Microsoft blames Windows Server 2025 automatic upgrades on 3rd-party tools (source)