privacynomad.blogg.se

1. #WINDOWS SERVER 2008 SECURITY POLICY FOR NETWORK FILES FULL#
2. #WINDOWS SERVER 2008 SECURITY POLICY FOR NETWORK FILES WINDOWS#

On second server (Windows Server 2012) it seems to Eset File Security don't slow network. Back to old version is not solve also when is never (better i guest) version that we paying yearly. For me only works disable all protection for now, but it is not acceptable. But i have also services / programs via http and https on this server and this services also tragically slows down. I have same issue with latest Eset File Security installed on 2003 server (i have user profiles on this server and all domain). I'm looking forward for ESET releasing a new v6 build soon with that issue fixed. It didn't matter what client version of ESET AV was installed on workstations - both v5 and v6 were affected same way.Īs part of troubleshooting, I tried disabling all advances features including Network Drives Scan (why this is even gets turned on by default?!), Document Protection, HIPS, Self-Defense, Anti-Stealth and the rest of the lot, keeping only real-time protection on - t he problems goes away only after turning the real-time protection off in v6 or rolling back to v4 (which works with all security features on). Users started reporting the problem next day after I upgraded the servers from v4 to v6, and was solved after rolling back the v4.

#WINDOWS SERVER 2008 SECURITY POLICY FOR NETWORK FILES WINDOWS#

In my environment this is happening only with files that are hosted on Windows 2003 servers and is affecting only Office and.

message for 15-25 sec or more), or in about 50% cases when you just right click on a file and waiting for the menu to show up (it opens after 10-15 seconds delay). The issue presents itself when you open a file hosted on a shared drive (Word or Excel freeze or display "opening the file from location.

png files are affected, and only on Windows 2003 servers. So far it seems only Office extensions plus. I have noticed exactly the same issue after upgrading my servers from v4 to v6. So, a bit more useful information but no solution yet. I've also tried disabling the "Protected View" options in Word/Excel in "Trust Center" but that didn't make a difference eitehr. xlsx file then opens slow as well.ĭisabling the "Document Protection" feature on both the server and the client does not have any effect. ods file) and then save this file to as an. If I open an OpenOffice speadsheet in MS Excel (this is an. So, it is something with just the normal Microsoft Office file extensions that is causing this. ods, when opened in MS Word or Excel open just fine. Files with normal Microsoft extensions such as. I didn't realize this until I had the PCs show file extensions in Windows Explorer. The client PCs have a mix of either Microsoft Office or OpenOffice installed. Finding some more pertinent information I believe. I've fixed this behaviour by simply making a new UAC GPO and WMI filtering it to servers only.OK. Since GPO takes precedence to local security, this is what was stopping me from seeing the NTFS permissions or gaining access to the folder. We actually have a domain wide UAC group policy object that was changing the default settings on the server.Īnd this is what the settings on the GPO were: It was indeed UAC but not the default UAC settings that comes on Windows Server 2008 R2. A Domain Admin has no problem accessing the share through the network.Įdit 2: Alright, so thank you to Zoredache below, I was able to get on the right track and figure out what was going on. Why would this cause the logged on domain administrator and any other domain admin to lose access? This behaviour is not seen on a Windows Server 2003 machine.Įdit: I've done some more testing and it appears only the logged on user of that machine is denied access, even though the user logged on is a member of the Domain Admins group. This is what the modified security looks like: This is what the default NTFS security descriptors look like: What is causing this to happen? The machine has been joined to the domain and the Domain Admins group is part of the local administrators group (not that that should matter anyway since I specifically have the domain admins in the NTFS permissions). When I do this, I lose permissions to the folder as a domain administrator.

#WINDOWS SERVER 2008 SECURITY POLICY FOR NETWORK FILES FULL#

I setup so that the local administrators group has full control, the domain\Domain Admins group has full control, and the SYSTEM built in user has full control.

I then setup the NTFS permissions so they don't inherit from the default security descriptors when you format an NTFS volume and I choose to remove the current descriptors so I can setup my own. When I try to share a folder, I set the everyone group to "Full Control" on the share permissions. However, I am running into a weird issue with it that seems to be a result of UAC. We just got our first Windows Server 2008 R2 server in.