Solved

Read and sync information from AD and NTFS file permision

Posted on 2014-09-03
3
234 Views
Last Modified: 2014-09-03
Hi Experts,

This is an application which stores information from a Microsoft Active Directory object/group changes and NTFS file server permissions levels/changes from a pre-defined location. (typical Windows file server under a Microsoft Active Directory environment)

 I just want to find a way to trigger a change once upon;

1. Active Director object change
2. NTFS file server permission level change for the object in the same Active Directory (example - when an admin user do a file server permission using windows explorer)

and write those change in to a database. (open source or Microsoft technology bases solution)

Can we get these information from Windows Shell or any other way of doing this  ?

Really appreciate your valued comments and guidance on this matter.

Thanks a lot !
0
Comment
Question by:Shakthi777
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 3

Accepted Solution

by:
Matt D earned 250 total points
ID: 40301778
If you turn up auditing on your servers, you can use the event log to trigger your application.

Auditing Permission Changes on a Folder

There are also some free solutions that can aid in event tracking.

Top 7 Free Tools for IT Professionals
0
 
LVL 37

Assisted Solution

by:Mahesh
Mahesh earned 250 total points
ID: 40301781
You can deploy event log analyser from Manage Engine which should store events in its database
http://www.manageengine.com/products/eventlog/
http://www.manageengine.com/products/active-directory-audit/

However in order to generate events, you need to set advanced audit polices through GPO in active directory
http://technet.microsoft.com/en-us/library/dn319056.aspx
0
 

Author Closing Comment

by:Shakthi777
ID: 40302748
Matt and Mahesh.. information provided was really helpful.

http://windowsitpro.com/security/auditing-permission-changes-folder

&

http://technet.microsoft.com/en-us/library/dn319056.aspx

above two links should full fill my requirement !
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Let's recap what we learned from yesterday's Skyport Systems webinar.
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…
Suggested Courses

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question