[Symptom Description]
During vulnerability scanning, if the CIFS service IP address of the V3 storage is added, an alarm is generated, indicating that SMB Signing Disabled.
[Alarm Information]
No alarm is generated on the storage device.
[Cause Description]
This alarm is generated because the storage CIFS service signature function is disabled. You can enable the signature function on DeviceManager and perform the test again.
SMB1.0 is rarely used (WinXP has stopped supporting services). Therefore, SMB1.0 is disabled by default. After this function is enabled, the SMB1.0 performance is affected because the interaction process increases.
After this function is enabled, if the signature takes effect, you need to remount the CIFS share. If the CIFS share is not mounted, existing services are not affected. However, the vulnerability is not displayed during rescan.
[Troubleshooting Roadmap]
When a customer uses vulnerability scanning software to scan the storage CIFS share service, a message is displayed indicating that the SMB Signing Disabled vulnerability exists.
[Solution]
Enable the SMB1.0 signature function. Choose Settings > Storage Settings > CIFS Service > Signature Settings > Signature. Select the option and scan again. The vulnerability alarm is cleared.
[Post-Recovery Check]
Use the vulnerability scanning tool to scan again. The alarm is cleared.
