• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1138
  • Last Modified:

LDAP query for Security group NTFS permissions

We currently have 1 domain running server 2003. Is there i way i can query a security group and it's permissions to all folder within the domain?
  • 2
1 Solution
LDAP is just the directory service for your AD; it does neither know nor care about where the groups and users have permissions.
To create more or less concise reports for security, try one of these:
SystemTools/Somarsoft (my favorite tool):
* DumpSec (http://www.systemtools.com/somarsoft)
Or these tools from Sysinternals:
* AccessEnum (http://technet.microsoft.com/en-us/sysinternals/bb897332.aspx)
* AccessChk (http://technet.microsoft.com/en-us/sysinternals/bb664922.aspx)
* ShareEnum (http://technet.microsoft.com/en-us/sysinternals/bb897442.aspx)
Or this one from Scriptlogic:
* Security Explorer (http://www.scriptlogic.com/products/securityexplorer/)
derekjrAuthor Commented:
So i would have to run DumpSec on every file server we have?

Yes; NTFS, share, and other permissions are always a part of the host on which the share resides.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

7 new features that'll make your work life better

It’s our mission to create a product that solves the huge challenges you face at work every day. In case you missed it, here are 7 delightful things we've added recently to monday to make it even more awesome.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now