Presentation is loading. Please wait.

Presentation is loading. Please wait.

File Access. Windows File Systems Three main file systemsThree main file systems File Allocation Table (FAT)File Allocation Table (FAT) FAT32FAT32 NTFSNTFS.

Published byBruno Kennedy Modified over 9 years ago

Similar presentations

Presentation on theme: "File Access. Windows File Systems Three main file systemsThree main file systems File Allocation Table (FAT)File Allocation Table (FAT) FAT32FAT32 NTFSNTFS."— Presentation transcript:

1 File Access

2 Windows File Systems Three main file systemsThree main file systems File Allocation Table (FAT)File Allocation Table (FAT) FAT32FAT32 NTFSNTFS Final choice of system depends onFinal choice of system depends on How the system will be usedHow the system will be used Whether there are multiple operating systemsWhether there are multiple operating systems Security requirementsSecurity requirements NTFS is highly recommendedNTFS is highly recommended

3 FAT Old…….Used by MS-DOSOld…….Used by MS-DOS Supported by all versions of Windows sinceSupported by all versions of Windows since Traditionally limited to partitions up to 2 GBTraditionally limited to partitions up to 2 GB Windows Server 2003 version supports partitions up to 4 GBWindows Server 2003 version supports partitions up to 4 GB LimitationsLimitations Small partition sizesSmall partition sizes No file system security featuresNo file system security features Disk space usage is poorDisk space usage is poor

4 FAT32 An updated FAT file systemAn updated FAT file system Supports partition sizes up to 2 TBSupports partition sizes up to 2 TB Not supported by NT V.4Not supported by NT V.4 Supported by Windows 2000 and upSupported by Windows 2000 and up Does not provide advanced security featuresDoes not provide advanced security features Cannot configure permissions on file and folder resourcesCannot configure permissions on file and folder resources

5 NTFS Introduced with Windows NT operating systemIntroduced with Windows NT operating system Current version (version 5)Current version (version 5) Windows NT 4.0Windows NT 4.0 Windows 2000Windows 2000 Windows XPWindows XP Windows Vista & 7Windows Vista & 7 Windows Server 2003 & 2008Windows Server 2003 & 2008 Supports partition sizes of up to 16 Exabytes (EB)Supports partition sizes of up to 16 Exabytes (EB)

6 NTFS (cont.) Advantages of NTFSAdvantages of NTFS Greater scalability and performanceGreater scalability and performance Support for Active DirectorySupport for Active Directory Security permissions on individual files and foldersSecurity permissions on individual files and folders Support for compression and encryptionSupport for compression and encryption Disk quotas for individual usersDisk quotas for individual users Remote StorageRemote Storage Recovery logging of disk activitiesRecovery logging of disk activities

7 Shared Folders Shared folderShared folder A resource made available through a network to authorized clientsA resource made available through a network to authorized clients Permissions required for creating, reading, modifyingPermissions required for creating, reading, modifying Groups that can create shared folders:Groups that can create shared folders: AdministratorsAdministrators Server OperatorsServer Operators Power Users (only on member servers)Power Users (only on member servers)

8 Windows Explorer Available since Windows 95Available since Windows 95 Create, maintain, and share foldersCreate, maintain, and share folders Folders can be on any drive connected to the computerFolders can be on any drive connected to the computer Folders are shared in Windows Explorer by accessing the Sharing tab of folder’s propertiesFolders are shared in Windows Explorer by accessing the Sharing tab of folder’s properties

9 Windows Explorer (cont.)

10 Shared name of folder does not have to be the same as the actual file nameShared name of folder does not have to be the same as the actual file name Hand icon used to indicate shared statusHand icon used to indicate shared status To make Shared folders hidden from My Network Places and Network Neighborhood, place a dollar sign ($) after name, e.g., Sales$To make Shared folders hidden from My Network Places and Network Neighborhood, place a dollar sign ($) after name, e.g., Sales$

11 Windows Explorer (cont.)

12 Computer Management Computer Management console allows you to share, monitor, or stop sharing folders for local and remote computersComputer Management console allows you to share, monitor, or stop sharing folders for local and remote computers The Share Folder Wizard is used to create folders in the Shared Folders section of Computer Management.The Share Folder Wizard is used to create folders in the Shared Folders section of Computer Management. It provides preconfigured and manual permissionsIt provides preconfigured and manual permissions All users have read-only accessAll users have read-only access Administrators have full access; others have read-only access, orAdministrators have full access; others have read-only access, or Administrators have full access; others have read and write accessAdministrators have full access; others have read and write access

13 Computer Management

14 Managing Shared Folders A shared folder has a discretionary access control list (DACL)A shared folder has a discretionary access control list (DACL) DACL contains a list of user or group references that have been allowed or denied permissionsDACL contains a list of user or group references that have been allowed or denied permissions Each reference is an access control entry (ACE)Each reference is an access control entry (ACE) DACL is accessed from Permissions button on Sharing tab of folder’s propertiesDACL is accessed from Permissions button on Sharing tab of folder’s properties Permissions only apply to network users, not those logged on directly to local machinePermissions only apply to network users, not those logged on directly to local machine

15 Managing Shared Folders (cont.)

16 To deny access to a user or groupTo deny access to a user or group Windows does not include a No Access share permissionWindows does not include a No Access share permission You must explicitly deny access to each individualYou must explicitly deny access to each individual Default permission is read access for Everyone groupDefault permission is read access for Everyone group Should be immediately addressed when a share is createdShould be immediately addressed when a share is created All contained objects inherit folder permissionsAll contained objects inherit folder permissions

17 NTFS Permissions NTFS permissions are configured via the Security tabNTFS permissions are configured via the Security tab NTFS permissions are cumulativeNTFS permissions are cumulative Denial of access always overrides permitted accessDenial of access always overrides permitted access NTFS folder permissions are inherited unless otherwise specifiedNTFS folder permissions are inherited unless otherwise specified NTFS permissions can be set at file or folder levelNTFS permissions can be set at file or folder level

18 NTFS Permissions (cont.) A new ACE has the default permissionsA new ACE has the default permissions Read or Read and Execute for filesRead or Read and Execute for files List Folder Contents for foldersList Folder Contents for folders

19 Special Permissions Special permissions can provide more or less access than standard permissionsSpecial permissions can provide more or less access than standard permissions Special permissions are accessed from the Advanced button in the Security tab on Properties dialog boxSpecial permissions are accessed from the Advanced button in the Security tab on Properties dialog box Permission Entry dialog box enables assignment of permissions and control of inheritance settingsPermission Entry dialog box enables assignment of permissions and control of inheritance settings

20 Special Permissions (cont.)

21 Inheritance settingsInheritance settings This folder onlyThis folder only This folder, subfolders, and files (default)This folder, subfolders, and files (default) This folder and subfoldersThis folder and subfolders This folder and filesThis folder and files Subfolders and files onlySubfolders and files only Subfolders onlySubfolders only Files onlyFiles only

22 Special NTFS Permissions (continued)

23 Effective Permissions Permissions that actually apply to a user can be the result of membership in multiple groupsPermissions that actually apply to a user can be the result of membership in multiple groups There is an Effective Permissions tab in Advanced Security Settings dialog box for resourceThere is an Effective Permissions tab in Advanced Security Settings dialog box for resource Shows specific permissions for a user or groupShows specific permissions for a user or group

24 Determining Effective Permissions (continued)

25 Shared Folder & Permissions NTFS permissions can be combined with share permissionsNTFS permissions can be combined with share permissions When accessing a share across a network, if both apply, Windows will use the most restrictiveWhen accessing a share across a network, if both apply, Windows will use the most restrictive When accessing a file locally, only NTFS permissions applyWhen accessing a file locally, only NTFS permissions apply

26 Converting FAT Partitions to NTFS Use NTFS for greatest security of partitions and volumesUse NTFS for greatest security of partitions and volumes A Command-line utility, CONVERT, is available that will convert FAT or FAT32 partitions and volumes to NTFSA Command-line utility, CONVERT, is available that will convert FAT or FAT32 partitions and volumes to NTFS All existing files and folders are retainedAll existing files and folders are retained CONVERT cannot work in reverse to convert NTFS to FAT or FAT32CONVERT cannot work in reverse to convert NTFS to FAT or FAT32

Download ppt "File Access. Windows File Systems Three main file systemsThree main file systems File Allocation Table (FAT)File Allocation Table (FAT) FAT32FAT32 NTFSNTFS."

Similar presentations

11 CONFIGURING AND MANAGING SHARED FOLDER SECURITY Chapter 8.

11 CONFIGURING AND MANAGING SHARED FOLDER SECURITY Chapter 8.
1 Chapter Overview Understanding and Applying NTFS Permissions Assigning NTFS Permissions and Special Permissions Solving Permissions Problems.

1 Chapter Overview Understanding and Applying NTFS Permissions Assigning NTFS Permissions and Special Permissions Solving Permissions Problems.
1 Chapter Overview Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions.

1 Chapter Overview Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions.
Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
1 File systems security: Shared folders & NTFS permissions, EFS (Week 6, Monday 2/12/2007) © Abdou Illia, Spring 2007.

1 File systems security: Shared folders & NTFS permissions, EFS (Week 6, Monday 2/12/2007) © Abdou Illia, Spring 2007.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 5: Managing File Access.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 7: Advanced File System Management.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 7: Advanced File System Management.
MIS 431 - Chapter 51 Chapter 5 – Managing File Access MIS 431 Created Spring 2006.

MIS Chapter 51 Chapter 5 – Managing File Access MIS 431 Created Spring 2006.
Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.

Hands-On Microsoft Windows Server 2003 Administration Chapter 5 Administering File Resources.
Chapter 6: Configuring Security. Group Policy and LGPO Setting Options Software Installation not available with LGPOs Remote Installation Services Scripts.

Chapter 6: Configuring Security. Group Policy and LGPO Setting Options Software Installation not available with LGPOs Remote Installation Services Scripts.
70-270, 70-290 MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Nine Managing File System Access.

70-270, MCSE/MCSA Guide to Installing and Managing Microsoft Windows XP Professional and Windows Server 2003 Chapter Nine Managing File System Access.
11 SHARING FILE SYSTEM RESOURCES Chapter 9. Chapter 9: SHARING FILE SYSTEM RESOURCES2 CHAPTER OVERVIEW  Create and manage file system shares and work.

11 SHARING FILE SYSTEM RESOURCES Chapter 9. Chapter 9: SHARING FILE SYSTEM RESOURCES2 CHAPTER OVERVIEW  Create and manage file system shares and work.
Lesson 4: Configuring File and Share Access

Lesson 4: Configuring File and Share Access
By Rashid Khan Lesson 8-Crowd Control: Controlling Access to Resources Using Groups.

By Rashid Khan Lesson 8-Crowd Control: Controlling Access to Resources Using Groups.
5.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 5: Working with File Systems.

5.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 5: Working with File Systems.
Hands-On Microsoft Windows Server 2003 Administration Chapter 6 Managing Printers, Publishing, Auditing, and Desk Resources.

Hands-On Microsoft Windows Server 2003 Administration Chapter 6 Managing Printers, Publishing, Auditing, and Desk Resources.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 7: Advanced File System Management.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 7: Advanced File System Management.
1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.

1 Securing Network Resources Understanding NTFS Permissions Assigning NTFS Permissions Assigning Special Permissions Copying and Moving Files and Folders.
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 7 Configuring File Services in Windows Server 2008.

Similar presentations

Ads by Google