RE: [ActiveDir] File Share Access

[joe]

Going through a share without specifying creds can be done in three ways that I can think of.   1. The domain userid you are logged on with and that gets passed to (via kerberos or ntlm) is valid on the server and share you are connecting to.   2. The userid and password being used is in sync with a userid and password on the server being connected to (or domain if the server is a dc).   3. Guest is enabled.   A null session share actually requires you to send null creds which isn't the same as sending bad creds.     joe   From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Dan DeStefano Sent: Friday, April 29, 2005 9:09 AM To: ActiveDir@mail.activedir.org Subject: [ActiveDir] File Share Access I am sorry about re-posting this question, but we lost some e-mail here at my company and I would have missed any responses to the original post.   I am having a problem with accessing a share on a server. The problem is that when I am logged onto a PC with a local administrator account and I connect to a share on a certain server, the contents of the share are displayed without me being prompted for a username/password to make the connection. The problem is that since permissions are set on these files/folders, I cannot access any of them when logged on with the local admin account. When connecting to other server shares, I am prompted for a username/pass, which I enter and am subsequently able to access shares.   I have looked into various settings on the server, most notably the anonymous enumeration of shares, but nothing helps. This share I am speaking of is a share cluster resource, but I am not sure if this would have anything to do with it. Also, the everyone group is not in the share or ntfs permissions anywhere.   I would appreciate any help provided.   Thanks in advance,   _________________________   Daniel DeStefano PC Support Specialist   IAG Research 345 Park Avenue South, 12th Floor New York, NY 10010 T. 212.871.5262 F. 212.871.5300   www.iagr.net Measuring Ad Effectiveness on Television   The information contained in this communication is confidential, may be privileged and is intended for the exclusive use of the above named addressee(s). If you are not the intended recipient(s), you are expressly prohibited from copying, distributing, disseminating, or in any other way using any of the information contained within this communication. If you have received this communication in error, please contact the sender by telephone 212.871.5262 or by response via e-mail.