And almost no-one will recommend null session shares to a DC. Other viable options include creating an account in the domain that matches the credentials of the workstation logon in order to facilitate passthrough authentication.
------Original Message------ From: Ben Scott To: NT Issues ReplyTo: NT Issues Subject: Re: Access to server share Sent: Oct 2, 2009 11:24 AM On Fri, Oct 2, 2009 at 11:07 AM, [email protected] <[email protected]> wrote: > It was my understanding, since the Share and NTFS perms have "Everyone" > included, shouldn't non-domain machines be able to access this share > without providing credentials? "Everyone" is a group, not a user. Sessions are authenticated to users, not groups. So until and unless you authenticate as *some* user, you're not a member of the "Everyone" group. As ASB says, you can add that share to the list of null session shares, and then you can connect without authenticating first. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ Sent from my Verizon Wireless BlackBerry ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
