In Microsoft environments, the effective permissions are a combination of the share permissions and the NTFS permissions. Docusnap determines the respective shares for a system, including the permissions and the local users and groups, during the Windows inventory process. The domain users and group hierarchies are retrieved by means of the Active Directory inventory scan.
To determine the organization of NTFS systems, you need to execute an additional wizard.
For a permission analysis, the following steps are required:
1. Determining the target devices using a Windows, CIFS or DFS inventory scan
2. Scanning the Active Directory
3. Determining the NTFS directory data using the NTFS wizard
4. Analyzing and evaluating the results
Note: Steps 1 and 2 are described in the Inventory section.
|
In order to perform a permission analysis, you must always scan the complete Active Directory system to make sure that all groups and users will be available for analysis. |
