Solved

User able to access secure folder

Posted on 2014-03-07
3
213 Views
Last Modified: 2014-03-07
I have a user who can access a locked  down HR folder that is only accessible to 5 people.  She can only access from one particular machine.  If she logs in anywhere else she is denied access.  I have never heard of this before.  Anyone have any idea where the security expolit for this could be found.  Its only this one user our of 150 and only on this one computer.

It doesnt happen for anyone else on this computer so its just this one user on this one computer.
0
Comment
Question by:funkyone60
  • 2
3 Comments
 
LVL 53

Expert Comment

by:McKnife
ID: 39913040
This is no exploit. By default, windows explorer uses saved credentials. I bet that on that machine there are credentials saved. Open credential management and delete those.
0
 

Author Comment

by:funkyone60
ID: 39913079
Who's saved credentials?  Out of 150 machines on our network- this is the only one where this happened? So to make sure I am understanding what you are saying- if one of the 5 people with access to that folder had logged into that machine- then their credentials would still be saved and valid in terms of folder access? And if this is what you are saying then every single machine that had been accessed by network administrator would show this same behavior- or any of the other 5 people.  Since we have roaming profiles and have had people at a number of different computers- this certainly would have happened more than once.  And to go a step further it should apply to anyone else that logs in to that computer- correct?
0
 
LVL 53

Accepted Solution

by:
McKnife earned 500 total points
ID: 39913115
No... I am talking about this: http://windows.microsoft.com/en-us/windows7/store-passwords-certificates-and-other-credentials-for-automatic-logon
Please note that the dialogue for credential saving can appear with any share usage where your own credentials are not sufficient.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This subject  of securing wireless devices conjures up visions of your PC or mobile phone connecting to the Internet through some hotspot at Starbucks. But it is so much more than that. Let’s look at the facts: devices#sthash.eoFY7dic.
Read about achieving the basic levels of HRIS security in the workplace.
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Migrating to Microsoft Office 365 is becoming increasingly popular for organizations both large and small. If you have made the leap to Microsoft’s cloud platform, you know that you will need to create a corporate email signature for your Office 365…

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

16 Experts available now in Live!

Get 1:1 Help Now