Tip

Organizing group accounts

Organizing group accounts
Adesh Rampat

A network administrator has to deal with the following scenario:

The company has just reorganized its department staff into various other departments. These staff members in the new departments are now performing different job functions. For example, an employee who belonged to the human resources department is now relocated to the accounts department. The network administrator must now reorganize the network group accounts to reflect the new changes.

The above scenario takes place continuously in the corporate world and the network administrator must always have the network group accounts current in order to eliminate any duplicate user accounts as well as duplicate group accounts because after the restructuring process some users will still have access to their previous shares. This can result in malicious attacks depending on the employee's state of mind.

The following steps can be taken to keep someone who no longer belongs to a group account from accessing protected information:

  • Most importantly, when new users are added to group accounts auditing must occur initially on a regular basis (refer to Auditing using Win2K).

  • The use of group policies should be used to assign permissions as needed. Creating a user group is much easier to manage than individual user accounts.

  • Do not have any group accounts representing departments that no longer exist.

    Requires Free Membership to View

  • This allows for greater manageability of the group accounts.

  • The network administrator should ensure that all user access for previous shares be removed. As in the scenario above, if the user who belongs to the human resource department was handling confidential information and gets relocated to another department, then the network administrator should make sure that all shares that pertain to this user are removed.

Adesh Rampat has 10 years experience with network and IT administration. He is a member of the Association of Internet Professionals, the Institute for Network Professionals and the International Webmasters Association. He has also lectured extensively on a variety of topics.

Whether you loved it or hated it, why not let us know? E-mail us to sound off.

Related Book

Admin911™ : Windows® 2000 Group Policy
Author : Roger Jennings
Publisher : Osborne
Published : Nov 2000
Summary:
Plan, design, test, roll out, and troubleshoot the policies available for managing your enterprise network with help from Admin911: Windows 2000 Group Policy. This practical and concise handbook contains all the critical information you need to solve problems quickly and keep your network running smoothly and efficiently.


This was first published in July 2001

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

Disclaimer: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.