Policy

Audit insecure guest logon

Microsoft Windows

Back to Lanman WorkstationBack to main
Audit insecure guest logon
Jump to overview

Policy overview

Key metadata and intent for this policy.

Computer
Category
Network > Lanman Workstation
Supported on
At least Windows Server 2025, Windows 11

Supported OS tags: Windows11, WindowsServer2025

This policy controls whether the SMB client will enable the audit event when the client is logged on as guest account. If you enable this policy setting, the SMB client will log the event when the client is logged on as guest account. If you disable or do not configure this policy setting, the SMB client will not log the event.

Internal name
Pol_AuditInsecureGuestLogon
Policy ID
3d7a9bb985f1
Elements
0

Registry values

How enabled and disabled states update the registry.

ScopeRegistry locationTypeEnabled valueDisabled valueCopy
Computer
Path
Software\Policies\Microsoft\Windows\LanmanWorkstation
Value name
AuditInsecureGuestLogon
REG_DWORD
HKLM
1
HKLM
0
Registry location
Type REG_DWORD · Computer
Path
Software\Policies\Microsoft\Windows\LanmanWorkstation
Value name
AuditInsecureGuestLogon
Hive
HKLM
Enabled value
1
Disabled value
0

Policy elements

Inputs and configuration options exposed by this policy.

This policy has no additional user input fields.