R
Rowan Bradley
I need a better understanding of how Vista security works.
My home network consists of 2 Vista PCs plus various routers, access points
etc. One of the Vista PCs is my work notebook, which I move backwards and
forwards to work twice a day. At work it belongs to the domain SSK.LOCAL, and
I don't want to have the hassle of moving it out of this domain and into a
workgroup, and back again, every day. At home for simplicity's sake we don't
have a domain set up so the other (my wife's) computer belongs to the default
workgroup WORKGROUP. I have an account RowanB set up on my notebook. I have
an account RowanB set up on my wife's computer with the same password. I find
that I can access some folders on my wife's comptuer that belong to RowanB,
but not others. I can't access any folders on my wife's computer that belong
to her. I've set all folders to be fully accessible to RowanB, so I don't
understand what's giving the Access Denied error.
My questions are:
1. How does Vista check the identity of remote users who are trying to
access network shares?
2. What effect does it have if the remote PC belongs to a domain (whose
domain controller is not accessible), while the local one belongs to a
workgroup?
3. When validating the remote user's account, what is checked? Does it
matter that the remote user's account is on a domain controller, while the
local one (with the same username and password) is a local account on that
computer? Does Vista treat these two logons as being the same, or different?
4. I've seen somewhere that in Vista you can't share the root of a drive,
and elsewhere that you can. I've shared my wife's C drive as C. Does this
work?
To be honest we just don't need any security at all on this network. I'm
perfectly happy if any user on the network can have full visibility and
control of every file on every other PC on the network. So if I could just
turn off all security, I would. It's a complete pain in the butt.
What is the best way of setting all this up, and eliminating the problems
that I'm currently having?
Thanks - Rowan
My home network consists of 2 Vista PCs plus various routers, access points
etc. One of the Vista PCs is my work notebook, which I move backwards and
forwards to work twice a day. At work it belongs to the domain SSK.LOCAL, and
I don't want to have the hassle of moving it out of this domain and into a
workgroup, and back again, every day. At home for simplicity's sake we don't
have a domain set up so the other (my wife's) computer belongs to the default
workgroup WORKGROUP. I have an account RowanB set up on my notebook. I have
an account RowanB set up on my wife's computer with the same password. I find
that I can access some folders on my wife's comptuer that belong to RowanB,
but not others. I can't access any folders on my wife's computer that belong
to her. I've set all folders to be fully accessible to RowanB, so I don't
understand what's giving the Access Denied error.
My questions are:
1. How does Vista check the identity of remote users who are trying to
access network shares?
2. What effect does it have if the remote PC belongs to a domain (whose
domain controller is not accessible), while the local one belongs to a
workgroup?
3. When validating the remote user's account, what is checked? Does it
matter that the remote user's account is on a domain controller, while the
local one (with the same username and password) is a local account on that
computer? Does Vista treat these two logons as being the same, or different?
4. I've seen somewhere that in Vista you can't share the root of a drive,
and elsewhere that you can. I've shared my wife's C drive as C. Does this
work?
To be honest we just don't need any security at all on this network. I'm
perfectly happy if any user on the network can have full visibility and
control of every file on every other PC on the network. So if I could just
turn off all security, I would. It's a complete pain in the butt.
What is the best way of setting all this up, and eliminating the problems
that I'm currently having?
Thanks - Rowan