Remove direct permissions

<< Display table of contents >>

Navigation:  Start > Using 8MAN - The Services > Threat & Gap Management > +8MATE Clean! >

Remove direct permissions

Background / Value

Direct permissions are inefficient because users need to be managed individually. Direct permissions cause unresolved SIDs when user accounts are deleted. These can then be used by other users to gain unauthorized access to sensitive data. Direct permissions also increase the length of the ACL on your file server and consequently the time needed to verify whether a user will get access to the requested resource. They should be avoided and replaced with group permissions.


8MATE Clean! identifies all direct permissions on you file servers and deletes them.


Alternative services

If you still want the accounts with direct permissions to have access, we recommend replacing the direct access rights:


8MATE Clean! Handbook: Replacing direct permissions with group memberships


8MATE Clean! is managed and operated by our experienced System Engineers.

Contact us for more information: