Cannot access SMB

spiceuser-4nrt · 2025-07-18T20:21:34.074Z

Hello,
I’ve got a weird problem on a Windows Server 2019 file server:

Local users can open SMB share located in Windows server.

Domain users get an error (NTFS and sharing permissions= Everyone):
\172.16. is not accessible. You might not have permission to use this network resource. Contact the administrator of this server to find out if you have access permissions.

The request is not supported.

Remote Desktop works fine for both accounts (Domain users and local users)

Ping to domain works. Telnet 445 works.

Please your help.

FB_IMG_1752867841306811×568 57.5 KB

FB_IMG_1752867836123834×270 22.9 KB

agenglercain · 2025-07-18T20:23:39.315Z

Been there done that!!

learn.microsoft.com

Control SMB signing behavior

How to disable SMB signing on third-party servers in Windows 11 and Windows Server.

And

learn.microsoft.com

Enable insecure guest logons in SMB2 and SMB3 for Windows client and Windows...

This article describes how to enable guest logons policy in SMB2 and SMB3 for Windows client and Windows Server devices using Group Policy and PowerShell.

ode2joy · 2025-07-18T20:25:56.485Z

Just an FYI, I know you tried scrubbing your text of the full IP address, but it’s still visible in your first screenshot.

Rod-IT · 2025-07-18T20:40:06.506Z

spiceuser-4nrt:

(NTFS and sharing permissions= Everyone)

From a security perspective this is a bad idea.

It seems like you may have SMB signing enabled on the server, but not on the client, check your GPO for signing enforcement.

Jay-Updegrove · 2025-07-18T20:43:02.243Z

Is there a reason you’re using SMB in the first place? There are better connection options available…now is a good time to start researching alternatives nothing like an emergency outage to gain traction on a project!

Rod-IT · 2025-07-18T20:44:58.702Z

Jay Updegrove:

Is there a reason you’re using SMB in the first place?

SMB is CIFS (\server\share), in itself this is expected, but SMB 1.0 shouldn’t be used.

naveenkatikam · 2025-07-19T04:21:23.470Z

Try SMB 1.0 CIFS or disable Microsoft network client: Digitally sign communications(always)

Screenshot 2025-07-15 105957413×366 11.2 KB

image780×635 69.2 KB

adrian_ych · 2025-07-19T09:52:29.973Z

Did you “enable” local firewall for SMB, printer & file sharing on the local server especially for Domain profile ?

Rod-IT · 2025-07-19T16:00:06.396Z

@naveenkatikam

As I posted over here too:

Windows file sharing issue Windows

Please don’t. Enabling legacy protocols is a BAD idea. Even more so since both devices are Windows 11 and support SMB 3.1.1 by default.

Please don’t suggest this, that’s bad practise and likely NOT the issue.

Both systems are new and should support SMB 3.1, turning on legacy systems is a very bad idea.

Turning off signing is also a bad idea, I’m not sure why you would be suggesting bad practises.

matt7863 · 2025-07-21T12:37:21.629Z

add domain users and see if it fixes.
you could also add the local users group and remove everyone.

‘Everyone’ requires the local guest account to be enabled - and is not recommended as it is a security risk.