It doesn't seem like I would be the only one to be looking for this answer. My company is looking to migrate our...
network from Windows NT 4.0 to Windows 2000. Over the years NT Security Groups have been created by IT staffers whom have since left the company. Is there a way to find out what these Security Groups provide access to? I was also thinking that if I was able to scan the directory structure of our file servers for which users/groups have permission to specific folders this would essentially provide me the information I'm looking for. Do you know of a tool which would scan a server and report back which users/groups have access to each folder?
The tool you're looking for is called DumpSec from Somarsoft (http://www.somarsoft.com). It dumps the permissions (DACLs) and audit settings (SACLs) for the file system, registry, printers and shares in a concise, readable format so that holes in system security are readily apparent. DumpSec also dumps user, group and replication information. DumpSec is a must-have product for Windows NT systems administrators and computer security auditors.
For More Information
- What do you think about this answer? E-mail us at editor@SearchSystemsManagement.com with your feedback.
- The Best Web Links: tips, tutorials and more.
- Ask your technical security questions -- or help out your peers by answering them--in our live discussion forums.
- Ask the Experts yourself: Our security gurus are waiting to answer your technical questions.