I am working with an application that allows security to a hierarchy of folders to be set through Active Directory. I have run into an issue with the application where it seems that the default security mode for all users is full access, and only those users that are deliberately excluded will not be able to receive access. So I would thus like to set the permissions so that all users/groups in a domain are excluded, and then explicitly include the groups and users that should have access.
So my question: is there a way that I can refer to all groups and/or users within Active Directory? For domain ABC, and user XYZ, I would input ABC\XYZ. Same for a group. Is there a syntax like ABC\* that would be a blanket reference to all users and groups for the domain? Or would I have to go in and exclude them all explicitly?
Best Answer
"Authenticated Users" includes all domain users, not sure if this would be available within your application but it works for group policies.