Data continues to grow at an exponential pace in our businesses and our analysis show that over 80% of this data still resides on file servers. Often it is challenging to take your business needs and match them up to Windows security and authorization to set the access to this data. Windows Server 2012 tries to help address these challenges by introducing a new feature called Dynamic Access Control. This feature was originally named “claim-based access control,” but was renamed to Dynamic Access Control because the new access control system does much more than just claims.
In Windows Server 2012, you can apply data governance across your file servers to control who can access information and to audit who has accessed information. Dynamic Access Control lets you:
Click to Enlarge
There are several Windows components that make this high-level capability work. AD was updated to comprehend claims. NTFS was updated to be able to use regular expressions in the file system ACLs in addition to security principals such as users and groups. File Server Resource Manager automates setting classifications on files. ADAC was updated to give administrators a nice GUI to manage their file access policies.
For a good solid hands on understanding of Dynamic Access Control try the hands on Virtual Lab on the Microsoft web site. In just 20 minutes you can have the hands on experience you need!
Technet Windows Server 2012 Virtual Labs http://technet.microsoft.com/en-us/windowsserver/hh968267.aspxThe lab at the bottom of this list is:Using Dynamic Access Control to Automatically and Centrally Secure Data In this lab, you will explore Dynamic Access Control in Windows Server 2012. You will learn how to create Central Access Policies, explore the new Access Denied Remediation features, as well as learn how to use the audit capabilities built into Dynamic Access Control.
My name is Anish and I am an Author Relationship Executive at Packt Publishing. Packt is a rapidly growing, dedicated IT book Publishing firm and has rolled out more than thousand books on various titles till date.
Packt is now planning to publish a book titled as 'Microsoft Windows Server 2012 Dynamic Access Control' which would be a 100 page micro book and is in the process of seeking potential authors to work on it. Do let me know if anyone is interested or if you have any queries, i'll be happy to answer them.
Author Relationship Executive