1

We have a legacy application which has data and PDF files available on a network share, and a locally-installed EXE to run it. The EXE uses a UNC path to access the data and PDFs.

The customer is concerned that users can access the data and PDFs outside the application.

Question: Is it possible, via Group Policy, third-party applications or whatever, to restrict Windows Explorer, CMD.EXE and so on from accessing this shared location while still allowing the application to access it?

Alan B
  • 503
  • 5
  • 15

1 Answers1

0

Short answer is no, but you can restrict access beyond the authentication/authorization methods avaiable within whatever network file system protocol you are using (probably SMB since you've mentioned .EXE files and windows-explorer).

See discussion on Building a Student Storage server

Community
  • 1
symcbean
  • 19,931
  • 1
  • 29
  • 49
  • Thanks. I think they're going to have to run it via Terminal Services, set to log in with a dedicated username and set to run the app automatically. – Alan B Jun 29 '11 at 14:22