"Here, when we create a Group for a folder, we record the path to the folder in the "Notes" section of the group in the GUI."
+1000! Not to mention our group name itself is in the form of <Server>_<Share>_<RWXD>(or whatever)_access for groups allowing access to specific files\folders. This has the added benefit of looking at say, a department group and you can see all the locations they have access to by looking at "member of". Dave -----Original Message----- From: Ben Scott [mailto:[email protected]] Sent: Wednesday, August 18, 2010 1:23 PM To: NT System Admin Issues Subject: Re: Finding unused/dead groups? On Wed, Aug 18, 2010 at 3:35 PM, Paul Hutchings <[email protected]> wrote: > Michael - A typical example is a folder gets created for a project, > group(s) gets created and assigned to the folder permissions, project dies > and gets deleted, groups don't. An ACL reporting tool may prove to be useful to you for that. See the contemporary "Old habits" thread. Here, when we create a Group for a folder, we record the path to the folder in the "Notes" section of the group in the GUI. Outside of IT, users generally don't have permissions to change ACLs, so that usually keeps things tidy for us. This likely won't scale to a larger org. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
