EFS over the network - authenticating 2 different ways
Posted on 2006-11-03
So I have a weird issue. We have a server located in a DMZ that is a drop server for files from our clients. We have two different accounts (local to the server) that we use to log in and retrieve these files. These accounts each have a locally encrypted directory (EFS) with a share off of it.
Both accounts are local admins on the box.
When we log in (map a drive) with account A to its share, no problem, send/receive files.
When we log in (map a drive) with account B to its share, I can see the files, but I can not cut or paste to it.
Since EFS over the network only works with Kerberos, it seems to me that I'm authenticating with kerberos for account A, but account B is defaulting to NTLM. This is from any workstation. Anyone have any ideas?