Solved

User able to access secure folder

Posted on 2014-03-07
3
221 Views
Last Modified: 2014-03-07
I have a user who can access a locked  down HR folder that is only accessible to 5 people.  She can only access from one particular machine.  If she logs in anywhere else she is denied access.  I have never heard of this before.  Anyone have any idea where the security expolit for this could be found.  Its only this one user our of 150 and only on this one computer.

It doesnt happen for anyone else on this computer so its just this one user on this one computer.
0
Comment
Question by:funkyone60
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 55

Expert Comment

by:McKnife
ID: 39913040
This is no exploit. By default, windows explorer uses saved credentials. I bet that on that machine there are credentials saved. Open credential management and delete those.
0
 

Author Comment

by:funkyone60
ID: 39913079
Who's saved credentials?  Out of 150 machines on our network- this is the only one where this happened? So to make sure I am understanding what you are saying- if one of the 5 people with access to that folder had logged into that machine- then their credentials would still be saved and valid in terms of folder access? And if this is what you are saying then every single machine that had been accessed by network administrator would show this same behavior- or any of the other 5 people.  Since we have roaming profiles and have had people at a number of different computers- this certainly would have happened more than once.  And to go a step further it should apply to anyone else that logs in to that computer- correct?
0
 
LVL 55

Accepted Solution

by:
McKnife earned 500 total points
ID: 39913115
No... I am talking about this: http://windows.microsoft.com/en-us/windows7/store-passwords-certificates-and-other-credentials-for-automatic-logon
Please note that the dialogue for credential saving can appear with any share usage where your own credentials are not sufficient.
0

Featured Post

Get Actionable Data from Your Monitoring Solution

Your communication platform is only as good as the relevance of the information you send. Ensure your alerts get to the right people every time with actionable responses. Create escalation rules that ensure everyone follows the process and nothing is left to chance.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will shed light on the latest trends when it comes to your resume building needs. For far too long, the traditional CV format has monopolized the recruitment market.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question