Posted: Mon Aug 02, 2010 10:22 pm Post subject: Full access to unathenticated machine (AD and Server 2008)
I'm running AD with Server 2003 as my primary domain controller. Another machine is running Server 2008 and DFS. The root of one drive is shared and all of the folders on that drive have permissions set for security groups in active directory.
Today I was rebuilding a workstation with WinXP Pro (SP2). The workstation had not yet been added to the domain. I was logged in to the workstation on the local admin account. I browsed to the Server 2008 machine using the UNC path and found that I had full access (read, write, delete, etc.) to all of the "secured" folders on the shared drive.
It was almost as if my AD security was being completely bypassed by the local admin account on the WinXP workstation. Has anyone else encountered this? Any ideas what I should do to correct the problem?
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum