Authenticated Users vs Domain Users Groups

Discussion in 'Windows Server 2003 / 2008 / 2012 / 2016' started by hippy, Dec 14, 2008.

  1. hippy

    hippy Kilobyte Poster

    307
    5
    40
    So,

    Domain Users group contains all Users from the Domain the group belongs to. < domain group
    Authenticated Users contains local users, domain users and Users from Trusted Domains too. < local group

    Is the above statement correct?
     
  2. JonGlory

    JonGlory Byte Poster

    212
    6
    22
    As far as im aware an Authenticated User is any domain useraccount that has been Authenticated by the domain controller.

    I may be wrong.
     
    WIP: LIFE
  3. Daniel

    Daniel Byte Poster

    236
    6
    25
    Seconded, although, we may both be wrong. :biggrin
     
    Certifications: 70-270, 70-290, 70-291
    WIP: None, but learning SEO/SEM
  4. Sparky
    Highly Decorated Member Award 500 Likes Award

    Sparky Zettabyte Poster Moderator

    10,718
    543
    364
    I think so, but an anonymous user is not included.
     
    Certifications: MSc MCSE MCSA:M MCSA:S MCITP:EA MCTS(x5) MS-900 AZ-900 Security+ Network+ A+
    WIP: Microsoft Certs
  5. Obinna Osobalu

    Obinna Osobalu Banned

    539
    7
    0
    The Authenticated Users group includes all users who are authenticated into the network by using a valid user account. Wen assigning perms you can use the Authenticated Users group in place of the Everyone group to prevent anonymous access to resouces.
     
    Certifications: MCITP:SA,MCTS(x5),MCSE2K3;MCSA2K3:M;MCP
    WIP: EDA7,70-652,Project+,MSP(70-632)
  6. kevicho

    kevicho Gigabyte Poster

    1,219
    58
    116
    Also to note in server 2003 (and XP) onwards(well I assume so) the everyone group no longer automatically includes the anonymous user group
     
    Certifications: A+, Net+, MCSA Server 2003, 2008, Windows XP & 7 , ITIL V3 Foundation
    WIP: CCNA Renewal
  7. Obinna Osobalu

    Obinna Osobalu Banned

    539
    7
    0
    Yeah sure mate:D anonymous users are membersof the Everyone group,these users might unlnowingly be granted access to resources intended only for authenticated users(windows NT and 2000). but in server 2003the Anonymous Logon group is no longer a member of the Everyone group.this implies that any anonymous users attempting to access resources hosted on computers runing Windows Server 2003 will be impacted. If anonymous users must be granted to resources, you must explicitly add the Anonymous Logon security group to the access control list for the resource and provide the required perms.
     
    Certifications: MCITP:SA,MCTS(x5),MCSE2K3;MCSA2K3:M;MCP
    WIP: EDA7,70-652,Project+,MSP(70-632)

Share This Page

Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.