Auditing

  • Thread starter Thread starter My test
  • Start date Start date
M

My test

I was doing an auditing and I noticed a called user NT
AUTHORITY\ANONYMOUS LOGIN in account management.

Caller user NAme :Anonymous logon
Caller Domain :NT Authority

What is the explanantion for this? or WHO is this user..
 
I was doing an auditing and I noticed a called user NT
AUTHORITY\ANONYMOUS LOGIN in account management.

Caller user NAme :Anonymous logon
Caller Domain :NT Authority

What is the explanantion for this? or WHO is this user..
Click to expand...
Don't know, he's anonymous ;) An anonymous user is one that accesses a
resource with NULL credentials, I.e. no username and no password. This
is a system identity to represent such logons - every attempt for access
to an object with null username and password is considered ANONYMOUS
LOGON and you can use it everywhere to grant/deny permissions and user
rights to this type of users. Some older software and services use such
null connections - for example NT 4.0 RRAS uses null credentials to
connect to a DC and check the user's dial-in properties.

HTH
--
Cheers,
Marin Marinov
MCT, MCSE 2003/2000/NT4.0,
MCSE:Security 2003/2000, MCP+I
-
This posting is provided "AS IS" with no warranties, and confers no
rights.
 
Back
Top