1.

What user credentials does NTFS Security Auditor use to connect to a domain/server?

By default, NTFS Security Auditor uses the currently logged on user context to connect to a domain/server. If NTFS Security Auditor determines that the currently logged on user does not have sufficient permissions on the specified server, a ‘Enter Network Password’ dialog appears allowing the user to enter user credentials to connect to the server. NTFS Security Auditor then establishes a session with the destination domain/server, using the user credentials specified. 

If 'Use Active Directory Services' is selected as Computer Enumeration option, then you can specify alternate domain credential (having domain administrator privileges) for managing all computers in each domain. In this case, NTFS Security Auditor establishes a session with the destination domain/server of the specified domain, using the specified user credential.

Top

2.

What permissions or privileges are required to view information about a Windows server on the network?

To view information about a Windows Server on the network, the currently logged on user or the user credentials specified must: 

1. be a valid domain user to view basic information

2. be a member in the Administrators group of the target server to view shares and its permissions.

Top

3.

What Services and Settings does NTFS Security Auditor require on a local or remote computer in order to collect data?

To generate reports for domains and the corresponding member servers, ensure the following settings are set appropriately:

1. "Enable NetBIOS over TCP/IP" option is enabled under the "Advanced" button in WINS tab of the TCP/IP property sheet.

2. Internet Connection Firewall (ICF) feature in Microsoft Windows XP is disabled on the network connection that you use, since Internet firewalls can prevent browsing and file sharing: <http://support.microsoft.com/default.aspx?scid=kb;en-us;298804>

3. Computer Browser service is started.

4. Task Scheduler service is started - For running the configured scheduled tasks at their scheduled times.

Top

4.

How do you refresh the data for the selected domain/server?

NTFS Security Auditor stores the data in the application database once it gathers the data for the selected domain/server for the first time. NTFS Security Auditor displays data from the local data store until the data is refreshed.

To “Refresh/Redo” data, press F5 click ‘Refresh’ from the menu/toolbar.Top

Top

5.

How can I simplify the task of generating reports for multiple Windows Servers in my network?

Using the Power Export feature in NTFS Security Auditor, you can setup and schedule reports for periodic generation. Power Export allows you to select multiple reports to be run for several domains and servers across the enterprise at scheduled intervals. You can export / e-mail the reports in different file formats.

Top

6.

How does the Power Export feature in NTFS Security Auditor manage the task of retrieving Windows Server information at scheduled intervals?

For retrieving Windows Server information, NTFS Security Auditor creates schedule tasks in Windows Task Scheduler. Based on the settings provided in the Power Export Wizard, the task will run under the specified user account context and retrieve Windows Server information at specified intervals.

Top

7.

Unable to find certain servers in the list.

1. The servers will be listed only if it is under a domain, which is available. 

2. The server might have been switched on after NTFS Security Auditor is started.

Click in the left panel (Enterprise – tree view) and press F5 to refresh

Top

8.

I get the error message “Could not find the domain controller for the domain.”? Why am I unable to view all the fields in a report?

The domain that you have selected may have been removed and still remains in cache.

Top

9.

Why am I unable to view all the data for selected domain/server?

NTFS Security Auditor allows the users to customize report views using the ‘Customize’ tool. The ‘Customize’ tool maintains the fields displayed in a report for each domain/server. Check whether ‘Customized' icon is displayed at the left bottom of main application screen status bar. If so, you may have used the customize tool and selected the fields to display. The customized fields will be stored and used even when the application is closed and re-opened.

Top

Why am I unable to view all the data for selected domain/server?

1. The ‘Filter’ tool maintains the data to be displayed in a report for each domain/server under each report category. Check whether the 'Filtered' icon is displayed in the left bottom of your screen status bar. If so, you may have used the Filter tool and provided the conditions for displaying the information. The filter conditions set will be stored and used even when the application is closed and re-opened. 

2. When collecting data, you have the provision to cancel the report collection. Check whether ‘Canceled' icon is displayed at the left bottom of your screen status bar. If so, you may have canceled the data collection. Click on the tab/server to collect the data again. 

Top

11.

What does the content "Inherited from:" in List of effective permissions for users and groups on folders or files the reports refer to ?

The list of groups in which the user is directly or indirectly (nested) member of are reported in ‘Type (Inherited & Explicit)’ field after "Inherited from: " text in the effective permissions report. Effective permission is resultant permission that is calculated using the permissions that are set explicitly and inherited by way of user membership in groups.

Consider a user named ‘John’ reported under ‘User/Group Name’ field with the following values for ‘Type (Inherited & Explicit)’ field:

Example 1: "Inherited from: pathfinder\administration” denotes that the user is a member of ‘administration’ group directly.

Example 2: "Inherited from: pathfinder\research -> pathfinder\design -> pathfinder\development" denotes that the user is indirect member of "research" by means of nested group design and development. 

Top

12.

Why do I get the message "The specified domain does not exist. Specify a valid domain name." while adding/editing/connecting to a domain?

When the Computer Enumeration option is set to 'Use Active Directory Services', NTFS Security Auditor queries Active Directory for enumerating servers present in a domain. During this process, NTFS Security Auditor tries to connect to the Active Directory Server (Domain Controller) of the specified domain internally. If NTFS Security Auditor is unable to find the domain controller for the selected domain, it will display the stated message. The following may be one of the reasons for such scenario: 

1. The domain controller for the domain that you have selected may have been switched off.

2. The domain that you have selected may have been removed and still remains in cache.

Top

13.

Why do I get the message "The specified forest does not exist or cannot be contacted." in 'Add domains from forest' option?

When the Computer Enumeration option is set to 'Use Active Directory Services', NTFS Security Auditor queries Active Directory for enumerating domains present in a forest. During this process, NTFS Security Auditor tries to connect to the Active Directory Server (Domain Controller) of the specified forest internally. If NTFS Security Auditor is unable to find the domain controller for the selected forest, it will display the stated message. The following may be one of the reasons for such scenario: 

1. The domain controller for the forest that you have selected may have been switched off.

2. The computer where NTFS Security Auditor installed is unable to resolve the specified DNS name of the forest.

Top