Forum Discussion
Solved
Force password in network drive with GPO
Hey guys, I have a GPO that automatically maps network drives. However, I would like to know if it is possible to force the user to enter their password every time they click on the drive? Is there ...
Active Directory provides you the ability to centralize authentication and identity management through a set of features including, notably single sign-on (SSO).
File access management is tied to your account, assuming file servers and workstations are also part of Active Directory. You implement this through good old AGDLP model or claims/dynamic access.
This is an on-premise model however, modern file management relies on Microsoft Entra ID, Azure file shares etc.
this is no longer possible. The GPP for network drive and password has been deprecated and removed. First it may use NTLM instead of Kerberos, secondly the password is stored insecurely in the GPP Object in SYSVOL. you should avoid such scenarios and bind network drives with GPP natively in user context. This requires the user (better group) has permissions via Share Permissions + NTFS permissions. Mind that "full" permissions are often not required and write is enough. Full allows to change permissions and ownership is quite dangerous.