Absolutely Full of I.T.

Kevin Remde

Subscribe to Kevin Remde: eMailAlertsEmail Alerts
Get Kevin Remde via: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn

Related Topics: Mixed Network Integration

Blog Feed Post

31 Days of our Favorite Things: Let’s get dynamic with our access control (Part 26 of 31)

BIG DATASo you have files to secure…


And forever you’ve been using security groups in Active Directory, and file and/or share permissions in Access Control Lists (ACLs), right?

“Uh huh.  What’s wrong with that?”

Nothing.  But what if I were to  tell you that you have some new and very flexible options available to you now in Windows Server 2012?

“I’m listening…”

In Server 2012 we introduce a capability called Dynamic Access Control.  Basically, the idea is to give you the ability to grant or deny access based on more than just security groups and permissions.  For example, your user accounts in Active Directory have details such as Department or Country, so why can’t you use those items to apply permissions? 

And maybe there are certain aspects of some documents that we could dynamically detect, and assign usage rights to those documents based on those aspects.  For example, a document that contains some set of numbers that looks like a U.S. Social Security number.  Based on that, we would grant access to the document to only a very select set of individuals.

“That sounds very useful!  Where can I go to learn more?”

I’m glad you asked.  In today’s installment of “31 Days of our Favorite Things”, my friend and coworker Brian Lewis gives a good description of Dynamic Access Control in Windows Server 2012.



Does Dynamic Access Control interest you?  Are you going to start looking at file security in a more dynamic way now?  Let’s talk about it in the comments!

Read the original blog entry...

More Stories By Kevin Remde

Kevin is an engaging and highly sought-after speaker and webcaster who has landed several times on Microsoft's top 10 webcast list, and has delivered many top-scoring TechNet events and webcasts. In his past outside of Microsoft, Kevin has held positions such as software engineer, information systems professional, and information systems manager. He loves sharing helpful new solutions and technologies with his IT professional peers.

A prolific blogger, Kevin shares his thoughts, ideas and tips on his “Full of I.T.” blog (http://aka.ms/FullOfIT). He also contributes to and moderates the TechNet Forum IT Manager discussion (http://aka.ms/ITManager), and presents live TechNet Events throughout the central U.S. (http://www.technetevents.com). When he's not busy learning or blogging about new technologies, Kevin enjoys digital photography and videography, and sings in a band. (Q: Midlife crisis? A: More cowbell!) He continues to challenge his TechNet Event audiences to sing Karaoke with him.