SHARE SECURITY METRICS

The Share Security Metrics dashboard provides comprehensive analysis of Windows network share permissions across your environment. Security alerts at the top immediately highlight critical concerns: shares with Everyone access, Full Control grants, direct user permissions, and Deny entries that may indicate complex or problematic configurations.

Distribution Overview

The Distribution tab presents key metrics including total shares analyzed, unique servers hosting shares, and unique share owners. Additional details reveal the top server by share count and average permissions per share. The built-in best practices panel reminds administrators to grant Full Control at the share level while using NTFS permissions for granular access control - the recommended approach for Windows file server security.

Access Levels

The Access Levels tab breaks down share permissions by type: Read, Change, and Full Control. Both tabular and chart visualizations help you understand the distribution of permission levels across your shares. High numbers of Change or Full Control grants at the share level may indicate over-permissioned shares that should be reviewed.

Principals & Servers

The Principals tab identifies the most frequently referenced security principals across your network shares, helping you understand who has the broadest share access. The Top Servers list shows which file servers host the most shares. Be cautious with 'Everyone' and 'Authenticated Users' groups, as they can expose shares to all network users. Prefer security groups over individual user accounts for easier management and auditing.