Configure share permissions

Posted on 2014-08-26
Last Modified: 2014-08-26
Hi everyone!

I'm a bit confused about shared folders and their permissions. I'm running Windows 2012 R2.

Let's say i have a folder with serveral subfolders. I share the root folder. Do I give the share permissions 'everyone full control', and configure access on the subfolders with NTFS permissions?

Or is this not the way to go?
Question by:SvenIA
    LVL 35

    Expert Comment

    To avoid mistakes with "oversharing", set the correct sharing rights, but also NTFS permissions!

    In some cases you expressly "overshare" a share (i.e. to Everyone), and limit subfolders with NTFS permissions. Usually if you want to have only one shared drive. But therein lies the risk to forget limiting permissions on important private folders.
    LVL 7

    Author Comment

    what do you mean by 'the correct sharing rights'?
    LVL 35

    Accepted Solution

    Sharing rights, as in sharing permissions.
    For example:
    If you have an Export division, and a Finance division, having files on the E:\ drive
    with E:\share\export for Export and E:\share\Finance for the Finance group, for security reasons, I share E:\share\export to the Export group, but also set the NTFS permission to only the Export group, same for Finance.
    While doing one (only sharing rights) or the other (only NTFS rights) is sufficient, doing both will result in lesser mistakes later on (when sub folders have other rights etc).
    Some people prefer to share e:\share to Everyone, and then set NTFS permissions for the export folder and finance folder, however, when someone makes a new Import folder and forgets to set the rights, it's available to everyone. Because they are able to do it, they usually don't ask IT to check up on the Import folder (if it works, why call?). Later on when they notify you that other people are looking into their files, it's too late already.
    LVL 7

    Author Closing Comment

    Good explination!! Thanks for the help m8!

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    Join & Write a Comment

    Suggested Solutions

    Table of Contents: Lesson 1 - Installing Windows Server 2012 ( Lesson 2 - Configuring Ser…
    Understanding the various editions available is vital when you decide to purchase Windows Server 2012. You need to have a basic understanding of the features and limitations in each edition in order to make a well-informed decision that best suits y…
    In this Micro Tutorial viewers will learn how to use Windows Server Backup to create full image of their system. Tutorial shows how to install Windows Server Backup Feature on Windows 2012R2 and how to configure scheduled Bare Metal Recovery backup.…
    In this Micro Tutorial viewers will learn how they can get their files copied out from their unbootable system without need to use recovery services. As an example non-bootable Windows 2012R2 installation is used which has boot problems.

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    19 Experts available now in Live!

    Get 1:1 Help Now