![]() I am pretty sure Windows command shells and DFS can do the same thing (been a while). The Linux mount command allows specifying a credentials file for username and password thus making them easier to update and more secure than command line script or fstab (i.e. usually as a directory in the root file system in manner very much like DFS. Linux requires network shares to be mounted first. Protect the mapped drive with permissions only for service (and appropriate admins etc) plus sharename might be hidden with leading &.īut DFS gives a clue to a more elegant solution. Long term the best simple thing is probably to permanently map a local drive letter to the network share. And its also an area where MS might change how security passes credentials yet again and break things. Long term that not so obvious match might make remembering to update permissions whenever things changed difficult. The simplest immediate solution would be giving the service credentials direct access to logon to the share (e.g. If that is acceptable security.why not just have an open share without any user or password? UNC and URI are themselves a clear text communication protocol. Honestly there are more secure ways to logon to shares than UNC URI. Sharenames remove all the host file server path considerations. A non-domain PC should not really care about DFS to which it does not subscribe or directly participate. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |