Hi experts,
I have another question open for querying AD with VBScript - this is for testing and reporting purposes.
I also need to provide my team of business consultants with a user interface that they can use to test various file share security issues.
Typical tasks they need to perform:
Use a given group name to get all members of the group
Use a given user account to get all groups that a user is a member of
Use a given folder path to get a view on which groups have what rights on the group
I've been searching the web and there are millions of tools. The problem is I have to download, install and test all of them.
I was hoping to get to an answer quicker based on expert experience.
Many thanks
Once a day it extracts all groups in a specific AD container from AD and writes them into my SQL database. Then it queries the database to get the groups back and queries AD again for the membership of each group individually. Nested groups/recursion is handled well here too. Membership is written to the SQL database too.
Thirdly, the tool traverses the shared folder structure and extracts all the groups with their permissions on each folder and writes that back to the database too.
Then the tool allows querying through a user interface for group membership, a user's group membership or groups/users permissions on specific folders.