Solved

ABE  on 2012 file shares

Posted on 2016-11-04
2
23 Views
Last Modified: 2016-11-11
Dear Experts

I have file servers on cluster with 2012 OS. I have enabled ABE on them and I need advise on one thing please.

within the share permission of share, I have enabled "everyone" with "Full Control" access and managing folder permissions with ntfs.

is this an accepted solution or should I use specific groups ? in old 2008 cluster, it shows a lot of groups and I do not want to replicate that on 2012 cluster. would it not be easier to set  everybody with full access and use groups within the permissions section?
0
Comment
Question by:kuzum
2 Comments
 
LVL 38

Accepted Solution

by:
Adam Brown earned 500 total points
ID: 41874083
The most restrictive permission set will win in a situation where multiple permissions apply to an object. In this case, you have Share permissions applied to the network share object and NTFS permission on the files themselves. If the share permissions are set to Full Control for everyone, users will still have to have the appropriate NTFS file permissions for any files they want access to. However, setting Everyone Full control may give users the ability to modify share settings if they can log into the server with their user account. Personally, I tend to remove the Everyone option and change it to Authenticated Users with Read and Write access on share permissions. But that is a common and accepted practice.
0
 

Author Closing Comment

by:kuzum
ID: 41883680
my research also pointed me to the same direction,
0

Join & Write a Comment

New Windows 7 Installations take days for Windows-Updates to show up and install. This can easily be fixed. I have finally decided to write an article because this seems to get asked several times a day lately. This Article and the Links apply to…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now