Click here to get back home

Security Groups ... Where
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
Security Groups ... Where Jan K. van Dalen 06-08-2005
Get Chitika Premium
Posted by Jan K. van Dalen on June 8, 2005, 4:01 pm
Please log in for more thread options
 Hi Everyone,

Is there any way I can know where a specific security group is being used?

IOW, if it is used in 7 different directories, 9 files and 3 public folders
that I would get a list with such info.

Thanks.




Posted by Steven L Umbach on June 9, 2005, 5:10 pm
Please log in for more thread options
 You could enable auditing of first object access on the computers where the
folders are located and then enable auditing of the folders for those
security groups for the bare minimum permissions that you need to audit and
then object access events will be generated in the security logs of the
computers - lots and lots of them. Note that the securuity group itself will
not be recorded in an object access event but the user that belongs to the
groups name will be recorded. Auditing of object access is not user friendly
but the info you need will usually be there if you dig deep enough. If you
decide to try such be sure to increase the size of the security logs
substantially and the use of the free Event Comb tool from Microsoft may
help in searhing the security logs. It also allows searches by text strings.
The links below may help. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;en-us;301640
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/ServerHelp/50fdb7bc-7dae-4dcd-8591-382aeff2ea79.mspx
http://www.comptechdoc.org/os/windows/win2k/win2kauditing.html

"Jan K. van Dalen" <vandjATmarkross.com> wrote in message
> Hi Everyone,
>
> Is there any way I can know where a specific security group is being used?
>
> IOW, if it is used in 7 different directories, 9 files and 3 public
> folders that I would get a list with such info.
>
> Thanks.
>




Posted by Roger Abell [MVP] on June 12, 2005, 11:08 pm
Please log in for more thread options
If by where used you ask to find where it has been applied in
the ACLing to grant resource access on the filesystem then
there are tools you could use, like cacls with a post-process
to grep out for the specific groups, or like dumpsec, etc.
But there is no built-in place to make this inquiry directly,
meaning you need to have something walk over the permissions
of all resources and examine. This is why I advocate using a
group for the resource (or resource cluster) which has only the
well-defined and non-shifting use. Then, examining the resource
groups tells one exactly what principal groups have access and
where/to-what; and conversely, if this is the only way access is
granted to resources then examining the memberships of the
principal groups tell you the resources to which they have any
access.

--
Roger Abell
Microsoft MVP (Windows Server: Security)

"Jan K. van Dalen" <vandjATmarkross.com> wrote in message
> Hi Everyone,
>
> Is there any way I can know where a specific security group is being used?
>
> IOW, if it is used in 7 different directories, 9 files and 3 public
> folders that I would get a list with such info.
>
> Thanks.
>




Similar ThreadsPosted
Domain Local Security vs Global Security vs Universal Security Groups October 16, 2006, 1:26 pm
RE: Default Security Groups February 21, 2007, 3:24 am
RE: Default Security Groups March 27, 2007, 7:01 pm
RE: Default Security Groups March 27, 2007, 8:07 pm
RE: Default Security Groups March 27, 2007, 8:51 pm
Users are disappeared from security groups October 19, 2005, 6:44 am
Re: looking for individuals to run local security groups March 4, 2008, 5:17 pm
Nesting domain groups under local groups March 18, 2007, 3:56 am
Restricted Groups July 3, 2006, 6:43 pm
Local Users & Groups Migration April 5, 2006, 9:19 am

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap