Local account credentials passed to domain shares

[Mark]

I'm sure this has been addressed in the past many times,
and I know I saw a KB article that refered to this (I
can';t seem to find it now) But when a user authenticates
to his local machine (in this case the machine is not even
in the domain), if a user with the same name exists in the
domain and the passwords are the same, the local
credentials will pass seemlessly through to domain shares
that the domain user has rights to. Does anyone have
additional info on this, preferably a KB article #.


Thanks

 

[Dajo Rybski]

You're talking about pass-through authentication.
http://support.microsoft.com/default.aspx?scid=kb;en-us;102716

Dajo

 

[Paul Adare]

microsoft.public.win2000.security news group, Mark

I'm sure this has been addressed in the past many times,
and I know I saw a KB article that refered to this (I
can';t seem to find it now) But when a user authenticates
to his local machine (in this case the machine is not even
in the domain), if a user with the same name exists in the
domain and the passwords are the same, the local
credentials will pass seemlessly through to domain shares
that the domain user has rights to. Does anyone have
additional info on this, preferably a KB article #.

What additional information are you looking for? This is simply a
fundamental part of the way the security subsystem works.
Not sure what exactly you're looking for.