-
Title
Can Security Explorer create permissions and group reports? -
Description
Can Security Explorer create permissions and group reports? -
Resolution
Description:Security Explorer's 'export' function enables administrators to extract information about the permissions set on volumes, shares, and folders of managed systems.
Permissions set on files are also reported, though individual files cannot be specifically selected.
Abstract:Supported file formats for reports include:
- Access 97 database format (.mdb)
- comma-delimited (.csv)
- tab-delimited (.txt)
Security Explorer includes two databases for exported data; each database has a single built-in report:
- SXP.mdb - for NTFS permissions
- SXPShare - for Share permissions
NOTE: If the comma-delimited format is selected the resulting report may exceed the limitations of the spreadsheet application used to view the report (65,536 rows for Microsoft Excel).
Permissions on multiple volumes, folders, or shares can be exported in a single operation by including them in an Enterprise Scope.
Solution:Security Explorer is primarily a permissions management tool, and it's reporting features are not as robust as it's companion product, Enterprise Security Reporter.
Neither Security Explorer nor Enterprise Security Reporter are able to provide information pertaining to access permissions assigned to Active Directory objects.
If information on Active Directory objects are required, Active Administrator can be used to report on Active Directory object permissions.
Original Article Number: 1269