Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat. The purpose of this eBook is to educate the reader about ransomware attacks.
Course Of The Month
2 days, 19 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Notification of security restrictions on NTFS folders.
Posted on 2015-01-12
I have some folders on a company share that supervisors have requested certain people have access and only one person can approve changes.
We have a handful of people in IT that can give users rights. Many times rights are based on similar job roles.
I thought about making new groups that would indicate higher security is enforced. (ex: Approved_Access_Support_De
Anyone know of any way to alert IT staff that a folder has more restrictions than others? We do try to check with a folder owner however much of the decision is based on department or role. We are also not interested in adding any additional software on the server. Readme files only work if you go into each folder/subfolder to see if any are there.
They do not want to change the name of the folders. Thanks
We have a handful of people in IT that can give users rights. Many times rights are based on similar job roles.
I thought about making new groups that would indicate higher security is enforced. (ex: Approved_Access_Support_De
Anyone know of any way to alert IT staff that a folder has more restrictions than others? We do try to check with a folder owner however much of the decision is based on department or role. We are also not interested in adding any additional software on the server. Readme files only work if you go into each folder/subfolder to see if any are there.
They do not want to change the name of the folders. Thanks
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
-
2
4 Comments
I'm not sure I have a clear understanding of your question. You want to know users or groups have security permissions on folders, or are you looking for a script to step through and list permissions on folders in a share? I'm assuming you aren't talking about an automated process that alerts an admin when permissions are changed.
If you use exchange on site too then this is what we do....
Create a New AD Universal security group. Example DRIVE_SuportDesk
Use exchange to set this as a Mail enabled security group.
Now modify the share itself so that this group is the principle security permission on it instead of users
In the EMC edit the new Distribution groups properties and set the Manager as the person who authorises access to the share.
This user "Manager" can now use outlook to add/remove members of the distribution group and therefore give/take away rights to the share.
We also create a DRIVE_SuportDesk_RO group for Read Only members access to the folder.
If you need any further explanations feel free and ask.
Create a New AD Universal security group. Example DRIVE_SuportDesk
Use exchange to set this as a Mail enabled security group.
Now modify the share itself so that this group is the principle security permission on it instead of users
In the EMC edit the new Distribution groups properties and set the Manager as the person who authorises access to the share.
This user "Manager" can now use outlook to add/remove members of the distribution group and therefore give/take away rights to the share.
We also create a DRIVE_SuportDesk_RO group for Read Only members access to the folder.
If you need any further explanations feel free and ask.
I think this will do what we want as well as have the share self-managed from the manager approving the users.
Thanks
Thanks
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Suggested Solutions
| Title | # Comments | Views | Activity |
|---|---|---|---|
| google retention policy | 4 | 135 | |
| IIS Authentication Error 401 | 16 | 75 | |
| Archiving/Deleting Old E-Mail boxes | 4 | 57 | |
| Remote Desktop user profiles stored outside of C Drive on Server 2008 R2 | 2 | 45 |
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
The business world is becoming increasingly integrated with tech. It’s not just for a select few anymore — but what about if you have a small business? It may be easier than you think to integrate technology into your small business, and it’s likely…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller.
Log onto the new domain controller with a user account t…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target.
To install the necessary roles, go to Server Manager, and select Add Roles and Featu…
Suggested Courses
Course of the Month2 days, 19 hours left to enroll
752 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.