Solved

User able to access secure folder

Posted on 2014-03-07
3
214 Views
Last Modified: 2014-03-07
I have a user who can access a locked  down HR folder that is only accessible to 5 people.  She can only access from one particular machine.  If she logs in anywhere else she is denied access.  I have never heard of this before.  Anyone have any idea where the security expolit for this could be found.  Its only this one user our of 150 and only on this one computer.

It doesnt happen for anyone else on this computer so its just this one user on this one computer.
0
Comment
Question by:funkyone60
  • 2
3 Comments
 
LVL 54

Expert Comment

by:McKnife
ID: 39913040
This is no exploit. By default, windows explorer uses saved credentials. I bet that on that machine there are credentials saved. Open credential management and delete those.
0
 

Author Comment

by:funkyone60
ID: 39913079
Who's saved credentials?  Out of 150 machines on our network- this is the only one where this happened? So to make sure I am understanding what you are saying- if one of the 5 people with access to that folder had logged into that machine- then their credentials would still be saved and valid in terms of folder access? And if this is what you are saying then every single machine that had been accessed by network administrator would show this same behavior- or any of the other 5 people.  Since we have roaming profiles and have had people at a number of different computers- this certainly would have happened more than once.  And to go a step further it should apply to anyone else that logs in to that computer- correct?
0
 
LVL 54

Accepted Solution

by:
McKnife earned 500 total points
ID: 39913115
No... I am talking about this: http://windows.microsoft.com/en-us/windows7/store-passwords-certificates-and-other-credentials-for-automatic-logon
Please note that the dialogue for credential saving can appear with any share usage where your own credentials are not sufficient.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Envision that you are chipping away at another e-business site with a team of pundit developers and designers. Everything seems, by all accounts, to be going easily.
Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
Along with being a a promotional video for my three-day Annielytics Dashboard Seminor, this Micro Tutorial is an intro to Google Analytics API data.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question