DQL: Analyzing explicit share access to users on NAS devices
While managing permissions on shared resources, one of the recommended practice is to assign permissions to groups rather than to users directly. Maintaining user accounts directly can be cumbersome and inefficient especially when people are moving around in the organization. There can be occasions where permissions are directly assigned to users who should no longer required to have access.
Data Insight can help finding all the paths where there is explicit permissions assigned to users so that correct access be granted and best practices followed in the organization. Attached DQL template will list all the paths in the NAS environment where there are explicit readable permissions granted to users and provide details to rectify such permissions. NFS permissions are not included in this template.