|
Posted by Roger Abell [MVP] on April 4, 2006, 11:29 am
Please log in for more thread options The only way that makes sense to me, assuming when you say that
they could see the shares you mean they could see within them (not
just the share names) would be if Guest were enabled.
That would then qualify as an Authenticated Users member.
If it had happened due to the policy to let Everyone permissions
apply to anonymous, then after you changed from Everyone to
Authenticated Users one would have expected behavior that you
saw once changing from Authenticated Users to explicit groups.
> Roger,
> Thanks for the response. I agree with your definition.
>
> We have a single domain in the forest and all users do login.
>
> However, a small office has opened up in the same building and the users
> are
> not associated with the domain at all. They simply want to share the LAN
> rather than have their own.
>
> I took in my own personal laptop just to make sure that nothing was
> available to them. I logged in locally. The laptop has not been joined to
> the
> domain and, I did not authenticate to the domain.
>
> However, when I browsed the network neighborhood, the server not only
> showed
> up but, many of the shares were visible. I then changed the share
> permissions
> from "Everyone" to "Authenticated users" and let it sit over night. I came
> back the next day and, the shares were still visible.
>
> I then took the "Authenticated users" from the share permission and added
> a
> single group or user and, I no longer had access form the laptop.
>
> I thought it was interesting that the member server required a login to
> see
> any shares at all.
>
> Thanks for the help.
>
> steve
>
> "Roger Abell [MVP]" wrote:
>
>> So what is it that you believe is "non-authenticated users" ?
>>
>> I am not trying to be smart or turt, but we do need to get
>> this clear. Since as I understand it non-authenticated users
>> are only people that cannot present successfully a domain
>> account somewhere in the forest (and hence are anonymous),
>> I just want to make sure we are both after the same end result.
>>
>> wrote in message
>> >I have a Windows 2003 DC that has shares on it.
>> >
>> > With the share permissions set to "Authenticated Users" having read
>> > access,
>> > non-authenticated users can see files and folders too. Why? I thought
>> > Authenticated meant only if you had a valid login and password.
>> >
>> > I have a member server also running Windows 2003. It requires a login
>> > to
>> > see
>> > any shares. If you double click it from "Microsoft Windows Network" a
>> > login
>> > dialog box pops up asking for a login. Where is that set? I'd like to
>> > have
>> > more of my servers require a login to see anything.
>>
>>
>>
| 
XML Sitemap