Answer the question
In order to leave comments, you need to log in
E
E
Egor2016-09-19 12:14:33
Egor, 2016-09-19 12:14:33
How to enforce folder security rules through Active Directory in Windows Server 2008 R2?
Hello, we have a domain controller, a terminal server and a file server, all on 2008r2.
All rights to folders are distributed through user groups in AD, clients on the terminal server have folders from the file server connected as network drives.
When a user is added to a new folder security group, the changes are applied only after the session ends and the user logs in.
Is there any way to apply these changes without relogin the user?
2 answer(s)
@y0hm
S
Sergey Galaktionov, 2016-09-19 @y0hm
https://community.spiceworks.com/how_to/7562-refre...
But this is a fierce crucible)
And if on the topic, then - When the user performs an interactive logon, the Local Security Authority determines access rights and group membership. The SIDs of security groups the user is a member of are appended to the user's access token which LSA creates during this process. This is only performed during an interactive logon, so any security mechanism that relies on the user's access token will require a logoff/logon cycle (some security mechanisms do not use the user's access token, however NTFS permissions will do so). technet.microsoft.com/en-us/library/cc759267(v=ws....
Similar questions
V
N
E
V
C
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question