Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

LDAP query for Security group NTFS permissions

Posted on 2009-04-15
3
Medium Priority
?
1,127 Views
Last Modified: 2012-05-06
We currently have 1 domain running server 2003. Is there i way i can query a security group and it's permissions to all folder within the domain?
0
Comment
Question by:derekjr
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 85

Expert Comment

by:oBdA
ID: 24147400
LDAP is just the directory service for your AD; it does neither know nor care about where the groups and users have permissions.
To create more or less concise reports for security, try one of these:
SystemTools/Somarsoft (my favorite tool):
* DumpSec (http://www.systemtools.com/somarsoft)
Or these tools from Sysinternals:
* AccessEnum (http://technet.microsoft.com/en-us/sysinternals/bb897332.aspx)
* AccessChk (http://technet.microsoft.com/en-us/sysinternals/bb664922.aspx)
* ShareEnum (http://technet.microsoft.com/en-us/sysinternals/bb897442.aspx)
Or this one from Scriptlogic:
* Security Explorer (http://www.scriptlogic.com/products/securityexplorer/)
0
 

Author Comment

by:derekjr
ID: 24148689
So i would have to run DumpSec on every file server we have?

0
 
LVL 85

Accepted Solution

by:
oBdA earned 2000 total points
ID: 24148911
Yes; NTFS, share, and other permissions are always a part of the host on which the share resides.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
Let's recap what we learned from yesterday's Skyport Systems webinar.
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource. Use Google, Bing, or other preferred search engine to locate trusted NTP …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question