security - how to prevent users from listing folders they do not have access to on windows 2012 RDS
2014-07
I have configured windows 2012 RDS and grant access to differnt users access remotely. I need to find a ways of preventing users from viewing that some folders exisits when they are not allowed to access them.
Any help?
What you need is Access Based Enumeration. ABE is a method of only showing a user the folders they have access rights to. If the user is not allowed in, they don't even know it exists.
This link talks you through setting up ABE - but essentially, it is a case of opening server manager, loading "File and storage services", selecting the properties of a share, and turning on ABE within the share properties menu.
I a windows I can look at the Last Access time of the file and it will show me when well a file has been touched last time. Is there any tool which could give me the list of the users who accessed particular file and when did they do that. Basically I have a file on a network drive and I would like to have some kind of basic audit reporting tool.
You don't need a separate tool, Windows is already capable of doing that (works very similar for other versions of Windows):
How to audit user access of files, folders, and printers in Windows XP