What would allow mapping a drive without password?

[jcfrasco]

I am running Active Directory and every computer in the domain is a Windows 2000 client. I have always added clients to the domain before mapping shared folders so I never thought I had a problem before now. I was testing a program on a test server, so I created a new domain and setup Active Directory on it, I wanted to install the service packs that I had on a computer in the other domain so I mapped a drive to that computer. I figured it would ask me for a user and password to connect with, but it never did. It just connected and displayed the files! Also, the two domains are not setup to trust each other, so there is something wide open in my security. What could be allowing any computer to connect to my files without any authentification? I would greatly appreciate any information in this matter.

Sincerely,

jcfrasco

 

[Davetoo]

Check for the "Everyone" account on your shared drives/folders.

I'm Certifiable, not certified.
It just means my answers are from experience, not a book.

 

[desktoprat]

Are you using the same user name and password combination at each location?

 

[jfp23]

Also if you have a local account on both machines that have the same password it will auto authenticate.

 

[kmcferrin]

Correct, it will only prompt you for credentials if the credentials that you have logged in with don't work. If both servers have the same local admin username/PW and you are logged in as the local admin, then it won't prompt you.

 

[jcfrasco]

To answer desktoprat's question, Yes! I did use the same user name and password for the test computer. However, since the domains are completly different wouldn't it require a naming convention like User@domain.com and then the password? I read that Active Directory is supposed to be more secure! Also, I thought the domain controller's local admin is disabled when active directory is installed, so I am still not following why this would happen. Here is the scenario: I have a domain controller running Domain1 with multiple Win 2000 clients in the domain. I set up TestServer1 and create Domain2 (not trusted with Domain1)and use a static IP that is in the same range as Domain1 so I can get to the Internet gateway. The UserName and Password for the Domain Controller in Domain1 and Domain2 are the same (it was easy to remember since it is just a temp test system). When I mapped a share to from TestServer1 in Domain2 to FileServer in Domain1, it connected immediatley without asking for authentification. I also expected it to fail because the domains are trusting each other. Is there something wide open in my system or is this just a coincidence because I used the same UserName and Password on both systems?

Thanks for your immediate responses!

jcfrasco

 

[jcfrasco]

To all,

My apoligies about my typing! I meant to say the domains are NOT trusting each other...

Thanks again!

jcfrasco

 

[ricpinto]

>or is this just a coincidence because I used the same UserName and Password on both systems?.


You're right, why don't you change the password of 1 system to convince you.