<div>
<div class="content wysiwyg-content">
we have taken a review of a file server in relation to permissions. In most cases, access to a specific directory is based on an AD security group, full of members. But on a few directories, users have been added individually, e.g. their AD account as opposed to adding them to a group and the group to the ACL. I am aware this isnt particularly good practice, but need some feedback from those who admin file server permissions and AD as to why its such a bad idea. It is not an enormous AD or environment, approx 500 user accounts.
</div>
</div>


we have taken a review of a file server in relation to permissions. In most cases, access to a specific directory is based on an AD security group, full of members. But on a few directories, users have been added individually, e.g. their AD account as opposed to adding them to a group and the group to the ACL. I am aware this isnt particularly good practice, but need some feedback from those who admin file server permissions and AD as to why its such a bad idea. It is not an enormous AD or environment, approx 500 user accounts.

granting users to acls' as opposed users to groups

This topic area includes legacy versions of Windows prior to Windows 2000: Windows 3/3.1, Windows 95 and Windows 98, plus any other Windows-related versions including Windows Mobile.

Windows OS

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.