NETLOGON and SYSVOL shares; Is this secure?

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Hi,

I just completed a domain install of Windows 2000 Server.
When browsing My Network Places, I noticed that NETLOGIN and SYSVOL
are wide open? What are these folders for and can you forward me to some
sites that will give me more information to their purpose?

Should I leave them shared the way they are?

Thanks,

Do
 
That's perfectly normal. They are used for loggin in from workstations.
Leave them as they are.

Marina
 
I would not change them for a default W2K installation. They are important for users
to receive Group Policy settings. Users by default should only have read/list/execute
permissions to those shares. If by "wide open" you mean they have full control, then
something is amiss with your installation. Apparently Windows 2003 gives excessive
permissions to sysvol folder as KB article below explains. --- Steve

http://support.microsoft.com/default.aspx?scid=kb;en-us;290647 -- Lists what
permissions should be.
http://support.microsoft.com/default.aspx?scid=kb;en-us;812538 -- W2003 permissions
issue.
 
Back
Top