2-6: Implement Folder Access Permissions Based on Required Capabilities
Solution overview
Type of solution | Guidance, scripts |
Features and tools | NTFS folders, ACLs, icacls |
Solution summary | Support folder access scenarios by applying thoughtful, nuanced collections of NTFS permissions. |
Benefits | Manageable, automated, and consistent application of least-privilege access to folders. |
Introduction
Prior to creating a shared folder, you must ensure that the folder's NTFS permissions are configured correctly. NTFS ACLs should be the primary, if not the sole, method with which access levels are implemented.
Some organizations refer to a user having the "role" to access a folder at a particular level. I prefer to reserve the word role to describe a user or computer ...
Get Windows Administration Resource Kit: Productivity Solutions for IT Professionals now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
