jmanishbabu
asked on
Windows 2008 servers admin shares accessible by users
Hello All,
I need to retain the administrator shares limited to the administrators and not to remove them.
I need the reason for users able to access the admin shares rather remove them.
This is windows 2008 server with SP2 standard . Forest Level is windows 2003.
\\servername\c$ on a 2008 server, windows explorer brings up the c drive for domain users. How can i restrict this .
http://support.microsoft.com/kb/954422
This above links completely removes the access for users and administrators
I need to retain the administrator shares limited to the administrators and not to remove them.
I need the reason for users able to access the admin shares rather remove them.
This is windows 2008 server with SP2 standard . Forest Level is windows 2003.
\\servername\c$ on a 2008 server, windows explorer brings up the c drive for domain users. How can i restrict this .
http://support.microsoft.com/kb/954422
This above links completely removes the access for users and administrators
If I'm understanding this..you're sharing the C drive on your Server?? Why?
ASKER
For administrator to access the drives remotely !!! not for the users and to access
some folders needs to be accessed by Admins under this member server
some folders needs to be accessed by Admins under this member server
If you right click the C drive you're sharing, security...you should be able to select the security groups that can access the drive. Make sure only Administrators group hass full access and remove users.
ASKER
No i dont think on C: drive will be shared for C$ access . C$ is the hidden share .
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Can you confirm me the Reg values of windows 2003 ?
"SrvsvcShareAdminConnect"= hex:01,00, 04,80,64,0 0,00,00,70 ,00,00,00, 00,00,00,0 0,\
14,00,00,00,02,00,50,00,03 ,00,00,00, 00,00,18,0 0,03,00,0f ,00,01,02, 00,00,00,\
00,00,05,20,00,00,00,20,02 ,00,00,00, 00,18,00,0 3,00,0f,00 ,01,02,00, 00,00,00,\
00,05,20,00,00,00,25,02,00 ,00,00,00, 18,00,03,0 0,0f,00,01 ,02,00,00, 00,00,00,\
05,20,00,00,00,27,02,00,00 ,01,01,00, 00,00,00,0 0,05,12,00 ,00,00,01, 01,00,00,\
00,00,00,05,12,00,00,00
"SrvsvcShareAdminConnect"=
14,00,00,00,02,00,50,00,03
00,00,05,20,00,00,00,20,02
00,05,20,00,00,00,25,02,00
05,20,00,00,00,27,02,00,00
00,00,00,05,12,00,00,00
hi,
Sorry for the late reply.. yes you are right..
2003:
[HKEY_LOCAL_MACHINE\SYSTEM \ControlSe t001\Servi ces\lanman server\Def aultSecuri ty]
"SrvsvcShareAdminConnect"= hex:01,00, 04,80,64,0 0,00,00,70 ,00,00,00, 00,00,00,0 0,\
14,00,00,00,02,00,50,00,03 ,00,00,00, 00,00,18,0 0,03,00,0f ,00,01,02, 00,00,00,\
00,00,05,20,00,00,00,20,02 ,00,00,00, 00,18,00,0 3,00,0f,00 ,01,02,00, 00,00,00,\
00,05,20,00,00,00,25,02,00 ,00,00,00, 18,00,03,0 0,0f,00,01 ,02,00,00, 00,00,00,\
05,20,00,00,00,27,02,00,00 ,01,01,00, 00,00,00,0 0,05,12,00 ,00,00,01, 01,00,00,\
00,00,00,05,12,00,00,00
Note: You should restart to see the change effect.
Good Luck...!!!
Regards,
Prem
Sorry for the late reply.. yes you are right..
2003:
[HKEY_LOCAL_MACHINE\SYSTEM
"SrvsvcShareAdminConnect"=
14,00,00,00,02,00,50,00,03
00,00,05,20,00,00,00,20,02
00,05,20,00,00,00,25,02,00
05,20,00,00,00,27,02,00,00
00,00,00,05,12,00,00,00
Note: You should restart to see the change effect.
Good Luck...!!!
Regards,
Prem
ASKER
Thanks it worked.:) Cheers