In this articles, I’ll show you how to disable SMB 1 on Windows Server 2016 and also monitor it In case one of your application Is still using SMB 1.
Windows Server 2016 comes with SMB 3.1.1 (Server Message Block) which Includes the latest security and performance features, however, it also has SMB 1 enabled by defaults.
The reason you don’t want to use SMB 1 Is because Is an old protocol that doesn’t Include the latest security features.
Optionally, you could enable auditing for SMB 1 connections and see which application is using SMB 1 on your server using:
Set-SmbServerConfiguration -AuditSmb1Access $true
You can leave on for a few days and see what comes up before disabling it.
To disable SMB 1 use the cmdlet below once you sure no applications are using it
Remove-WindowsFeature -Name FS-SMB1