Hi, I'm having issues hiding folders from people using access based enumeration We have a drive on our file server (F:) with a folder that's shared to certain security groups. The folder only has these certain groups in the security tab, the folder doesn't inherit permissions from the folder above and it hands out permissions to child objects. The file share doesn't have permission to Everyone, just the same security groups This was set up via Share and Storage management, were using Server 2008 R2 For some reason people who aren't in these security groups can still see the file share when the go to \\servername although they can't access it they can still see it. Should this not be hidden with ABE enabled? Cheers

ABE controls the visibility within the share (folders, files), not the visibility of the share as such (http://blogs.technet.com/b/filecab/archive/2008/10/09/storage-tips-access-based-enumeration-hidden-secrets-no-pun-intended.aspx)

ABE controls the visibility within the share (folders, files), not the visibility of the share as such (http://blogs.technet.com/b/filecab/archive/2008/10/09/storage-tips-access-based-enumeration-hidden-secrets-no-pun-intended.aspx)

Ahh that makes sense now, is there a way to hide the shares over than using the $?

Hi, Access-based enumeration hides files and folders that users do not have permission to access. Yes, but it will not hide the share itself. That means, if your folder Folder1 and Folder2 are created share folder, they are all still visible for every user no matter Access Control List. However, subfolders in shares are hidden for users who dont have access permission. > is there a way to hide the shares over than using the $? A hidden share is identified by a dollar sign ($) at the end of the share name. Hidden shares are not listed when you look through the shares on a computer or use the net view command. We should use $ sign to hide share. For more information please refer to following MS articles: Unable to Hide Shared Folders http://social.technet.microsoft.com/Forums/hu/winserverfiles/thread/43835987-7f6f-4b9a-92ef-368244e31a7e Delete Unauthorized Shared Folder View in Windows 2008 R2 http://social.technet.microsoft.com/Forums/en-US/winservergen/thread/3dc8e1a8-a6df-4b0d-ac06-9a72d1541719 How to create and delete hidden or administrative shares on client computers http://support.microsoft.com/kb/314984Lawrence TechNet Community Support

Hi, I agree with others. Access based enumeration applies only on the subfolder/files of a share and not on the share itself. http://www.windowsnetworking.com/articles_tutorials/Implementing-Access-Based-Enumeration-Windows-Server-2003.htmlRegards, Rafic If you found this post helpful, please give it a "Helpful" vote. If it answered your question, remember to mark it as an "Answer". This posting is provided "AS IS" with no warranties and confers no rights! Always test ANY suggestion in a test environment before implementing!

Thanks guys - I think that's answered my question, appreciate it Cheers