Discussion in 'File Systems' started by Rob, Apr 6, 2006.

  1. Rob

    Rob Guest

    Question: - I have a DFS Test environment that has ABE enabled on all the
    shares. ABE seems to work fine at the folder level - preventing users from
    seeing folders within a share that they do not have access to. However, all
    users see all the shares even though ABE is enabled at the share. I read an
    MSKB Article #907458 that said we should check the ACL's to make sure the
    target and root are the same. We did and they are. Does ABE have the ability
    to prevent users from seeing DFS shares that they do not have access to? If
    so, how do you get it to work? Thanks.
    Rob, Apr 6, 2006
    1. Advertisements

  2. The article states "After you follow these steps, only those DFS links that
    a user has the rights to access are displayed when the root is enumerated."
    If this isn't what you're seeing, there are probably some lingering
    permissions issues.

    You mention you have made sure that the target and the root permissions are
    the same. When I look at the article, the piece that stands out to me is
    "For example, make the ACL on the link the same as the ACL on the target of
    the link." So you would need to look at the link folders under the root
    folder and make sure the ACLs are the same on this folder as they are on the
    link target. Does that make sense?
    Jill Zoeller [MSFT], Apr 10, 2006
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.