<div>
You need to add the User Group (from the other forest) in your NTFS ACLs.
</div>


You need to add the User Group (from the other forest) in your NTFS ACLs.

<div>
<div class="content wysiwyg-content">
Hi<br />
<br />
Can someone explain this please.<br />
<br />
Two win2003 forests linked via a forest trust.<br />
I understand users in either forest can access resources in the other forest; however, I have a share with default permissions applied (except for share permission which is everyone Full Control) so how can a user from the other forest access this share without me explicitly giving permission to him or OtherDomain\Users group?<br />
<br />
I thought the domain users groups were members of each other but I checked and this is not the case.<br />
<br />
Thanks<br />
<br />
<br />
&nbsp;
</div>
</div>


Hi

Can someone explain this please.

Two win2003 forests linked via a forest trust.
I understand users in either forest can access resources in the other forest; however, I have a share with default permissions applied (except for share permission which is everyone Full Control) so how can a user from the other forest access this share without me explicitly giving permission to him or OtherDomain\Users group?

I thought the domain users groups were members of each other but I checked and this is not the case.

Thanks


 

Interforest  Authentication

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).