I'm not sure that Authenticated users will allow your domain computer accounts to read policies. For example, when applying GPOs for things like software installation, authenticated users is not enough for computer accounts to read and apply the policy correctly--I usually have to add "Domain computers" on NTFS perms, share perms (if it's not everyone), and at the policy.
-Bonnie -----Original Message----- From: Juned Shaikh [mailto:[email protected]] Sent: Sunday, April 11, 2010 1:06 PM To: NT System Admin Issues Subject: RE: SYSVOL and NETLOGON Def perms Thanks, The security team that I am working with is of the opinion that Everyone : READ permission should be deleted and only Authenticated users : FULL CONTROL shoule be applied. Theoretically it seems that nothing will break.. because these shares will only be accessed after successful authentication is completed.. Anyone has faced similar argument and what should be the response. Thanks, ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
