In order to lớn maintain proper access controls, it’s crucial khổng lồ understvà what every entity on an access control danh mục (ACL) represents, including the implicit identities that are built into lớn a Windows environment.quý khách hàng sẽ xem: Authenticated users là gì

There are a lot of built-in accounts with obscure names and vague descriptions, so it can be confusing. One question I often get is: “What is the difference between the Everyone group và Authenticated Users?”

The Bottom Line

Authenticated Users encompasses all users who have logged in with a username & password.

Bạn đang xem: Authenticated users là gì

Everyone encompasses all users who have logged in with a password as well as built-in, non-password protected accounts such as Guest & LOCAL_SERVICE.

A Bit More Detail

If the above sầu descriptions were a tad oversimplified for you, here is some more detail.

The Authenticated Users group includes all users whose identities were authenticated when they logged on. This includes local user accounts as well as all domain name user accounts from trusted domains.

A Guest tài khoản is a built-in tài khoản on a Windows system that is disabled by mặc định. If enabled, it allows anyone khổng lồ login without a password.

Xem thêm: Sau More Là Gì Trong Tiếng Anh? More And More Trong Tiếng Anh

Contrary lớn popular belief, anyone who is logged in anonymously—that is, they did not authenticate—will NOT be included in the Everyone group. This used lớn be the case, but was changed as of Windows 2003 & Windows XPhường (SP2).

Who Has Access To What?

When it comes khổng lồ permissions, one critical question we need to be able khổng lồ answer is: which humans have sầu access to a particular resource?

Most of the time when you’re inspecting permissions on a given resource in Windows you’re not dealing with humans (this is actually a best practice); rather, you’re dealing with groups, some of which are built-in implicit identities with ambiguous names. As a result, we often have sầu lớn bởi quite a bit of digging lớn get what we need.

With the Data Security Platform, you’re only ever one cliông xã away from seeing which humans have access to lớn a given resource. So when your CEO says, “Who has access to lớn ‘Trade Secrets.doc’?” you can respond with a meaningful, actionable answer instead of going on a frantic scavenger hunt.

What’s the Difference Between…

Looking for more helpful differentiators? We’ve written several!


Rob Sobers

Rob Sobers is a software engineer specializing in web security và is the co-author of the book Learn Ruby the Hard Way.