• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 400
  • Last Modified:

Active Directory Security Group

Do you know of any tool or way that will help me resolve an AD group to its Folder? Ie: I have the Active Directory Group, but the description is blank and would like to know which Folder it corresponds to.

To explain abit further: I have AD Groups that I have no idea what they do. I'm pretty sure that they are giving permissions to specific folders on the network and would like to find out which folder on the network the AD group corresponds to.

3 Solutions

When you apply permissions to a network resource, you store the AD SID of that user or group to the NTFS File System of the machine which has the specific network resource. (i.e. Share Folder).

There is nowhere on the AD Database where it is stored where that SID was used and if you think it well there is no reason that it should be, because that information wouldn't be accurate.

So the answer to your question is that there is no way to find that kind of information with that way.
You will have to try a different approach.
Try to find a program that exports the NTFS permissions and then check the groups used manually.

With Regards,

If this is multiple servers it will be a little hard, you could use a product like security explorer


Another thing you can do is change the security group to a distribution group. Find out what they loose access to, if needed you can switch back to a security group and they will get all the permissions back becuase to group will still keep the SID.
Glen KnightCommented:
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Easily manage email signatures in Office 365

Managing email signatures in Office 365 can be a challenging task if you don't have the right tool. CodeTwo Email Signatures for Office 365 will help you implement a unified email signature look, no matter what email client is used by users. Test it for free!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now