Using Dynamic Access Control and Rights Management for Information Protection

Sign in to queue

Description

You’ve heard about DAC, but wondered exactly what it is and how it works? Heard the term claims-based access but not sure what that means? In this demo-oriented session we answer these questions and more! Windows Server 2012 provides an incredibly powerful information protection solution for users and devices. Come along and see how you can leverage it!

For more information, check out this course on Microsoft Virtual Academy:

Day:

2

Session Type:

Breakout

Code:

WCA-B215

Room:

Room 243

Embed

Download

Download this episode

For more information, check out this course on Microsoft Virtual Academy:

The Discussion

  • User profile image
    Microspecia​list

    One of my favourite features !

  • User profile image
    dmwiz

    Haven't used this, would like to learn how it can help me in my environment.

  • User profile image
    NeilD

    I'm worried about the impact on the domain controllers and if they can handle the requests from thousands of users where AD data elements that have not been preloaded into groups are being used to evaluate data access.  How do we provide this feature and not also impact the entire organization with performance issues?

  • User profile image
    aldie_lab

    @NeilD: AFAIK, only the elements (and policies) are defined in AD, the actual values are stored in NTFS on the file server. So the cost of enforcement is spread across the file servers, using the file attributes from NTFS and the user claims from the PAC in their Kerberos ticket.

Add Your 2 Cents