Re: Auditing Folder Permissions on Windows

["Butturini, Russell" <Russell.Butturini () Healthways com>]

I've always used this (xcacls), and it's fantastic for exact kind of thing.

http://support.microsoft.com/kb/318754



From: pauldotcom-bounces () mail pauldotcom com [mailto:pauldotcom-bounces () mail pauldotcom com] On Behalf Of Zate
Sent: Friday, March 04, 2011 7:19 AM
To: PaulDotCom Security Weekly Mailing List
Subject: [Pauldotcom] Auditing Folder Permissions on Windows

So here is my issue.

I am having to basically output the ACL's (ie user/group and it's permissions) for about 9 shares on our network.  So 
in the form of \\server\place\folder<file:///\\server\place\folder>

i need to know the ACL on every folder under that top one to tell if it's changed from what it should be.

so far I've tried doing it in perl and in ruby, both run into some limitations with the sheer number of folders or with 
dealing with the depth of recursion.

tried it in Powershell, hits a limit in the length of the folder names.

Any tools out there that do this stuff?  This is kind of centered around SOX reporting, so I am sure I am not the only 
one trying to do this.

Ideas?

thanks.

Zate

******************************************************************************
This email contains confidential and proprietary information and is not to be used or disclosed to anyone other than 
the named recipient of this email, 
and is to be used only for the intended purpose of this communication.
******************************************************************************

_______________________________________________
Pauldotcom mailing list
Pauldotcom () mail pauldotcom com
http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom
Main Web Site: http://pauldotcom.com