Network access: Allow anonymous SID/Name translation

Network access: Allow anonymous SID/name translation

This security setting determines if an anonymous user can request security identifier (SID) attributes for another user.

If this policy is enabled, a user with knowledge of an administrator's SID could contact a computer that has this policy enabled and use the SID to get the administrator's name.

Default on workstations and member servers: Disabled.
Default on domain controllers: Enabled.

Policy path:

Computer Configuration\Windows Settings\Local Policies\Security Options

Supported on:

At least Windows XP SP2, Windows Server 2003

Registry settings:

Not a registry key

Reboot required:

No

Search form

Policy path:

Supported on:

Registry settings:

Reboot required:

Related content