security - how to prevent users from listing folders they do not have access to on windows 2012 RDS

07
2014-07
  • user167647

    I have configured windows 2012 RDS and grant access to differnt users access remotely. I need to find a ways of preventing users from viewing that some folders exisits when they are not allowed to access them.

    Any help?

    • Answers
  • HopelessN00b

    What you need is Access Based Enumeration. ABE is a method of only showing a user the folders they have access rights to. If the user is not allowed in, they don't even know it exists.

    This link talks you through setting up ABE - but essentially, it is a case of opening server manager, loading "File and storage services", selecting the properties of a share, and turning on ABE within the share properties menu.


    • Related Question

    security - Windows: tool to list of the user who accessed a particular file and when
  • Questioner

    I a windows I can look at the Last Access time of the file and it will show me when well a file has been touched last time. Is there any tool which could give me the list of the users who accessed particular file and when did they do that. Basically I have a file on a network drive and I would like to have some kind of basic audit reporting tool.


    • Related Answers
  • 0xA3

    You don't need a separate tool, Windows is already capable of doing that (works very similar for other versions of Windows):

    How to audit user access of files, folders, and printers in Windows XP