[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Sysvol share compatibility

ID: oval:org.secpod.oval:def:18958Date: (C)2014-05-29   (M)2023-07-04
Class: COMPLIANCEFamily: windows




The Sysvol share compatibility machine setting should be configured correctly. This setting controls whether or not the Sysvol share created by the Net Logon service on a domain controller (DC) should support compatibility in file sharing semantics with earlier applications. When this setting is enabled, the Sysvol share will honor file sharing semantics that grant requests for exclusive read access to files on the share even when the caller has only read permission. When this setting is disabled or not configured, the Sysvol share will grant shared read access to files on the share when exclusive access is requested and the caller has only read permission. If this setting is enabled, domain administrators should ensure that the only applications using the exclusive read capability in the domain are those approved by the administrator. Fix: (1) GPO: Computer Configuration\Administrative Templates\System\Net Logon\Sysvol share compatibility (2) KEY: HKLM\Software\Policies\Microsoft\Netlogon\Parameters\AllowExclusiveSysvolShareAccess

Platform:
Microsoft Windows Server 2008 R2
Reference:
CCE-10914-0
CPE    1
cpe:/o:microsoft:windows_server_2008:r2
CCE    1
CCE-10914-0
XCCDF    1
xccdf_org.secpod_benchmark_general_Windows_Server_2008_R2

© SecPod Technologies