Windows 2003 Access-based Enumeration (ABE)

ABE filters shared folders visible to a user based on that individual user's access rights, preventing the display of folders or other shared resources that the user does not have rights to access. ABE can be accessed via graphical user interface (GUI), command-line executable tool, and a robust advanced programming interface (API). After download and installation of the MSI on the desired Windows Server 2003 server, you just need to go to the shares where you want to enable ABE. Each share controls whether ABE will be used for the files and folders contained under it. To control if ABE is enabled, you only need to access the Properties sheet for the shared folder. There you will find a new tab named Access-based Enumeration. As seen below.

Access-based Enumeration is a welcome addition to any network. For the longest time, administrators and security professionals have created elaborate workarounds to hide resources from users. Now ABE solves this problem by hiding resources that users don't have explicit access to. It works great for networks that have Windows Server 2003 SP1 servers with any client viewing the resource.