Solved

File and Folder permissions ...who has access to what?

Posted on 2014-03-11
5
256 Views
Last Modified: 2014-06-27
I have a few file servers with thousand of folders and files. I need to know who has access to what files and folders without drilling down to each individual file and folder.

I'm now tasked with certifiying annually who has access to what files and folders and getting their supervisor to sign off on or ok their access....do they still need access to such and such. (This is a new process for the org, it hasn't been done in the past)

What free or low priced product is out there that I can install and checked access permissions on my Windows 2003 and 2008 file servers?
0
Comment
Question by:bernardb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
5 Comments
 
LVL 15

Accepted Solution

by:
Giovanni Heward earned 500 total points
ID: 39922046
Here's a quick script to write permissions to a text file.  This could easily be modified to create a icacls AclFile for use later as a differential check, etc.

@echo off
setlocal enabledelayedexpansion
for /f "skip=1" %%d in ('wmic logicaldisk get caption^,providername^,drivetype^,volumename') do (
	set drive=%%d
	if not [!drive!]==[] if exist !drive!\ (
		set /p p=Processing DACLs on !drive!\<nul
		(icacls !drive!\* /t /c /q)>>perms_!drive!.txt 2>nul
		if exist perms_!drive!.txt (echo ...wrote !perms_!drive!.txt) else (echo.)
	)
)

Open in new window

0
 
LVL 26

Expert Comment

by:pony10us
ID: 39922052
0
 
LVL 15

Expert Comment

by:Giovanni Heward
ID: 39922068
You could look into Tripwire Enterprise.  Tripwire detects changes to 29 object properties (file/directory) and 21 registry key/values on Windows.

Specifically NTFS DACL, SACL, etc.
0
 
LVL 4

Expert Comment

by:michaelalphi
ID: 39922652
A good resource you can have check here(http://www.fileaccessauditing.com/) which seems a perfect match for such environment. Try this.
0
 

Author Comment

by:bernardb
ID: 40002872
Thanks everyone, sorry for the delay....checking and will get back to you.

Thanks for your responses.
0

Featured Post

Major Incident Management Communications

Major incidents and IT service outages cost companies millions. Often the solution to minimizing damage is automated communication. Find out more in our Major Incident Management Communications infographic.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question