MutonUfoAI / pgina

pGina fork: Open Source Windows Authentication
http://mutonufoai.github.io/pgina
BSD 3-Clause "New" or "Revised" License
155 stars 38 forks source link

NTFS Security #150

Closed zbalkan closed 5 years ago

zbalkan commented 5 years ago

When I use any other authentication than AD or Samba, the NTFS security lacks the permission, ownership and auditing features. It is not a responsibility of pGINA but is there a way to simulate AD security groups or users for NTFS through a plug in?

Edit: To integrate with NTFS security, a group, user or other security principal must be added to the ACL of a file or folder. That requires an SID with a trusted authority. When there is no domain, there is no RID or correct SID. Only trusted SID provider is the computer itself, which means the user must be created on every computer. That breaks the whole architecture. So it is a huge trouble for less benefit. I believe this issue can be closed.