• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 408
  • Last Modified:

Can I query Windows 2003 AD Server to get all users and what permissons they have?

Can someone assist me in querying my server for all users and what permissions they have?

Thanks
0
rbonds
Asked:
rbonds
1 Solution
 
Michael KnightCommented:
CSVDE will export a spreadsheet with more info than you'd like to know about your AD:
http://www.computerperformance.co.uk/Logon/Logon_CSVDE_Export.htm 
0
 
latchwaysCommented:
Absolutly CSVDE is the best way.
0
 
FDiskWizardCommented:
This is a multiple problem. Users can be in groups, that in turn have access to NTFS folder, and other AD objects. So, it is hard to see EVERYTHING they have access to.
You would have to have a dump of folder permissions, and compare.. if you want to know what files they have access to.
From the AD side, is possible to dump access list info. I can't recall exact methods I've used.

Check out this tool (DumpSec):
http://www.systemtools.com/somarsoft/?somarsoft.com
0
 
Michael KnightCommented:
Yes, DumpACL/DumpSec should give you registry level and file level Access Lists.
0
 
rbondsAuthor Commented:
Great utility! Thanks for the insight.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now