Question about resources

  • Thread starter Thread starter Chris
  • Start date Start date
C

Chris

Hello all! I really need some help in understanding how
AD works with regards to access to servers and shares and
such. The only other director service I have worked with
is NDS and that makes sense to me. How does can you
secure a share to an OU? Do you place the server where
the share is located inside the OU? Or do you give the OU
rights to that share? Please help!!!

Thanks,
Chris
 
You can control access to shared resources with a variety of methods. You
can use share permissions

share permissions
Permissions that restrict a shared resource's availability over the network
to only certain users.
, which are simple to apply and manage. Or, you can use access control
access control
A security mechanism that determines which operations a user, group,
service, or computer is authorized to perform on a computer or on a
particular object, such as a file, printer, registry subkey, or directory
service object.
on the NTFS file system
NTFS file system
An advanced file system that provides performance, security, reliability,
and advanced features that are not found in any version of file allocation
table (FAT). For example, NTFS guarantees volume consistency by using
standard transaction logging and recovery techniques. If a system fails,
NTFS uses its log file and checkpoint information to restore the consistency
of the file system. NTFS also provides advanced features, such as file and
folder permissions, encryption, disk quotas, and compression.
, which provides more detailed control of the shared resource and its
contents. You can also use a combination of these methods.


http://www.microsoft.com/resources/...roddocs/en-us/file_srv_access_permissions.asp
 
Chris said:
Hello all! I really need some help in understanding how
AD works with regards to access to servers and shares and
such. The only other director service I have worked with
is NDS and that makes sense to me. How does can you
secure a share to an OU? Do you place the server where
the share is located inside the OU? Or do you give the OU
rights to that share? Please help!!!
Click to expand...
OU in AD is not a security principal - and becouse of this You can't
assign permissions to the OU. You will have to group Users in OU in the
security group and then assgin permissions to the share based on group
membership
 
So, then what is the purpose of Active Directory? Why use Active Directory over the old NT Domains?
 
Chris said:
So, then what is the purpose of Active Directory? Why use Active Directory over the old NT Domains?
Click to expand...
AD resolvs a lot of issues which was a "pain in the a.." in old domain
model. Improved management, kerberos authentication, GPO's, transitive
trust, delegation - these are some features that sare new and very
usefull in the AD.

this thread starts from OU's - in AD this is not a security principal,
this is a management container on which You can set GPO, delegate
control and do some other things. This is structure made to improve
management of the domain objects. however security model stays preety
"the same" as in NT style domain, major changes are computer account as
full security pricipals and some changes in groups model (new group
scope and types) .
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

OU/Container Question Rephrased 2
AD for Multi tenancy 0
Creating home folders for existing users... 2
Problems to Add users to group 3
Using OU's to control access to shared resources 1
Delgation Question 2
OU question ??- 2
Same user in different OU 2

Back
Top