Remove From My Forums

Sharing Folder of windows 2008 Server

Question
0

Sign in to vote

We have Windows 2008 64 Bot Ent . It has ADS , DNS GPO it is working fine . ( Sharing Folder SYSvol and Netlogon ) can i stop this two sharing folder ? Bcoz some people to copy his files to this Two folder . is is any distributed to domain controller ?

Sunday, June 10, 2012 8:06 AM

Answers

1

Sign in to vote
Hello Subash,

These two shares are default shares in any DC.Instead of stopping shares restrict it to authenticated users.Generally everyone have read only access to these folders unless and otherwise user have special permissions.

I recommend you check this thread for setting up permissions http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/d54c2e41-f827-4db3-8956-1b3d15f5a076
Regards, Ravikumar P
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:51 AM
Sunday, June 10, 2012 9:25 AM
1

Sign in to vote
Hey Subash,

By Default this will be shared to all users, its nothing but a folder used by server puposes

SysVol : This Folder contains all DNS information and Replication if there is any, And All Group Policy Objects are stored onli in this folder ! yeah this is read only may be some users can see the contents and for some users it may show as Empty folder am not sure

Netlogon : All the logan Scripts are found Under Here make ur default "Logon.bat" script put it in this netlogon folder go back to AD users and Computer under ur domain Find Somethinf called "Foreign security policy" there u go configure ur own logon script ,

Especialy this folder is in share means u can identify that its one of the domain controller or GC

Where as Sysvol folder can be found in all member servers !

If the two perverts doing some File transfer means add two users and deny permission to them ,do that by right clicking prop of that folder(sysvol or netlogon), it will kick off thier datas on to them !

If you stop sharing means eventuallly the datas will not propogate to ur other DC ! Glad you asked !!

Whoomp ! Whoomp !

Face the fact tat we all have plenty to learn about this field. Deal wit the failures, use tem as motivation, learn something new everyday. Claiming false credentials & phantom skillsets will not get you far, especially when 63248651487512645876531864 people in the universe know how 2 use the internet
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:52 AM
Sunday, June 10, 2012 12:47 PM
0

Sign in to vote
Another useful link for you http://www.computing.net/answers/windows-2003/netlogon-and-sysvol-shares/4629.html
Regards, Ravikumar P
- Marked as answer by Suriya Subash Thursday, June 14, 2012 7:13 AM
Sunday, June 10, 2012 9:26 AM
0

Sign in to vote
http://social.technet.microsoft.com/wiki/contents/articles/8548.sysvol-and-netlogon-share-importance-in-active-directory.aspx

The SYSVOL share contains W2K software distribution files, scripts, and ADM templates as well as the Group Policy Template. An NT administrator would consider Sysvol to be W2K's version of NETLOGON. Replication in W2K is handled by the File Replication Service to keep the SYSVOL share synched between W2K domain controllers. In fact, W2K creates the NETLOGON share for down-level clients, Win9x and Windows NT, under the SYSVOL structure.

SYSVOL is shared under %systemroot%\Sysvol\sysvol and NETLOGON is shared under %systemroot%\Sysvol\sysvol\domain\Scripts.
Mohamed Abd Elhamid Abd Elaziz Microsoft System Administrator My blog: http://Mabdelhamid.wordpress.com/
- Proposed as answer by 朱鸿文 Monday, June 11, 2012 5:34 AM
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:51 AM
Sunday, June 10, 2012 10:41 AM
0

Sign in to vote
Hello,

"We have Windows 2008 64 Bot Ent . It has ADS , DNS GPO it is working fine . ( Sharing Folder SYSvol and Netlogon ) can i stop this two sharing folder ? "

Stop them and your domain is down, these share are the most important shares you have in a domain and they MUST be available always.

Domain users by default can read data in the folder so which security groups are the people member of that are copying data into the folder?
Best regards

Meinolf Weber
MVP, MCP, MCTS
Microsoft MVP - Directory Services
My Blog: http://msmvps.com/blogs/mweber/

Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
- Proposed as answer by 朱鸿文 Monday, June 11, 2012 5:34 AM
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:51 AM
Sunday, June 10, 2012 11:18 AM
0

Sign in to vote
Hi,

As this thread has been quiet for a while, we will mark it as ‘Answered’ as the information provided should be helpful. If you need further help, please feel free to reply this post directly so we will be notified to follow it up. You can also choose to unmark the answer as you wish.

BTW, we’d love to hear your feedback about the solution. By sharing your experience you can help other community members facing similar problems. Thanks for your understanding and efforts.

Best Regards

Kevin
TechNet Community Support
- Marked as answer by Suriya Subash Thursday, June 14, 2012 7:21 AM
Thursday, June 14, 2012 5:51 AM

All replies

1

Sign in to vote
Hello Subash,

These two shares are default shares in any DC.Instead of stopping shares restrict it to authenticated users.Generally everyone have read only access to these folders unless and otherwise user have special permissions.

I recommend you check this thread for setting up permissions http://social.technet.microsoft.com/Forums/en-US/winserverDS/thread/d54c2e41-f827-4db3-8956-1b3d15f5a076
Regards, Ravikumar P
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:51 AM
Sunday, June 10, 2012 9:25 AM
0

Sign in to vote
Another useful link for you http://www.computing.net/answers/windows-2003/netlogon-and-sysvol-shares/4629.html
Regards, Ravikumar P
- Marked as answer by Suriya Subash Thursday, June 14, 2012 7:13 AM
Sunday, June 10, 2012 9:26 AM
0

Sign in to vote
http://social.technet.microsoft.com/wiki/contents/articles/8548.sysvol-and-netlogon-share-importance-in-active-directory.aspx

The SYSVOL share contains W2K software distribution files, scripts, and ADM templates as well as the Group Policy Template. An NT administrator would consider Sysvol to be W2K's version of NETLOGON. Replication in W2K is handled by the File Replication Service to keep the SYSVOL share synched between W2K domain controllers. In fact, W2K creates the NETLOGON share for down-level clients, Win9x and Windows NT, under the SYSVOL structure.

SYSVOL is shared under %systemroot%\Sysvol\sysvol and NETLOGON is shared under %systemroot%\Sysvol\sysvol\domain\Scripts.
Mohamed Abd Elhamid Abd Elaziz Microsoft System Administrator My blog: http://Mabdelhamid.wordpress.com/
- Proposed as answer by 朱鸿文 Monday, June 11, 2012 5:34 AM
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:51 AM
Sunday, June 10, 2012 10:41 AM
0

Sign in to vote
Hello,

"We have Windows 2008 64 Bot Ent . It has ADS , DNS GPO it is working fine . ( Sharing Folder SYSvol and Netlogon ) can i stop this two sharing folder ? "

Stop them and your domain is down, these share are the most important shares you have in a domain and they MUST be available always.

Domain users by default can read data in the folder so which security groups are the people member of that are copying data into the folder?
Best regards

Meinolf Weber
MVP, MCP, MCTS
Microsoft MVP - Directory Services
My Blog: http://msmvps.com/blogs/mweber/

Disclaimer: This posting is provided AS IS with no warranties or guarantees and confers no rights.
- Proposed as answer by 朱鸿文 Monday, June 11, 2012 5:34 AM
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:51 AM
Sunday, June 10, 2012 11:18 AM
1

Sign in to vote
Hey Subash,

By Default this will be shared to all users, its nothing but a folder used by server puposes

SysVol : This Folder contains all DNS information and Replication if there is any, And All Group Policy Objects are stored onli in this folder ! yeah this is read only may be some users can see the contents and for some users it may show as Empty folder am not sure

Netlogon : All the logan Scripts are found Under Here make ur default "Logon.bat" script put it in this netlogon folder go back to AD users and Computer under ur domain Find Somethinf called "Foreign security policy" there u go configure ur own logon script ,

Especialy this folder is in share means u can identify that its one of the domain controller or GC

Where as Sysvol folder can be found in all member servers !

If the two perverts doing some File transfer means add two users and deny permission to them ,do that by right clicking prop of that folder(sysvol or netlogon), it will kick off thier datas on to them !

If you stop sharing means eventuallly the datas will not propogate to ur other DC ! Glad you asked !!

Whoomp ! Whoomp !

Face the fact tat we all have plenty to learn about this field. Deal wit the failures, use tem as motivation, learn something new everyday. Claiming false credentials & phantom skillsets will not get you far, especially when 63248651487512645876531864 people in the universe know how 2 use the internet
- Marked as answer by 朱鸿文 Thursday, June 14, 2012 5:52 AM
Sunday, June 10, 2012 12:47 PM
0

Sign in to vote
Hi,

As this thread has been quiet for a while, we will mark it as ‘Answered’ as the information provided should be helpful. If you need further help, please feel free to reply this post directly so we will be notified to follow it up. You can also choose to unmark the answer as you wish.

BTW, we’d love to hear your feedback about the solution. By sharing your experience you can help other community members facing similar problems. Thanks for your understanding and efforts.

Best Regards

Kevin
TechNet Community Support
- Marked as answer by Suriya Subash Thursday, June 14, 2012 7:21 AM
Thursday, June 14, 2012 5:51 AM
0

Sign in to vote

Dear Boss

Many People are coping that folder how can i stop Boss

Thursday, June 14, 2012 7:10 AM

Products

Resources

Solutions

Updates

Trials

Related Sites

Training

Certifications

Other resources

Support options

More support

Not an IT pro?

Answered by:

Sharing Folder of windows 2008 Server

Question

Answers

All replies