CIFS share permissions Everyone vs. Authenticated Users

MMONTEN01 · ‎2013-05-21

Hi,

Is there any benefit to changing the default CIFS share permission from everyone/Full control to Autheniticated Users/Full Control?

I am locking the shares using NTFS permissions however, some people have requested, in addition to NTFS perms to allow only some users access, the share perms get updated to authenticated users/full control. Is this somehow providing another level of security that I am just not aware of?

ANILPAWAR1988 · ‎2013-05-21

Yes, it will help you security purpose and you can allow only Authenticated user for share access..

MMONTEN01 · ‎2013-05-21

If I have CIFS share perms set to Everyone/full control and the shared folder ntfs perms with only ntdom\user1 listed, how does changing everyone/full control to authenticated users/full control provide any additional security?

Looking at the documentation: " A share-level ACL only restricts access to files in the share; it never grants more access than the file-level ACLs."

CIFS share permissions Everyone vs. Authenticated Users

Discovery of shares with everyone permissions

cifs share with default permissions everyone/Full control asks for username/password

CIFS Share not accessible

CIFS Shares DACLS vs Storage Level Gaurd - Effective Permissions

NTLM vs Kerberos authentication mechanism CIFS sessions on 7-mode