How can I audit file server permissions across multiple shares?

NTFS Permissions Auditor allows you to scan multiple file shares simultaneously, discover shares automatically, and consolidate permission information into a single report, saving hours of manual work.

Does NTFS Permissions Auditor show permissions by user or by folder?

Both. NTFS Permissions Auditor provides two main views: a folder-centric view showing all users with access to specific locations, and an account-centric view showing all folders a specific user or group can access.

Can NTFS Permissions Auditor detect changes in permissions over time?

Yes, the Pro version includes change reports that compare permission states between audits, highlighting additions, removals, and modifications to help you track unauthorized changes or document approved modifications.

Do I need admin rights to run NTFS Permissions Auditor?

You need appropriate read access to the directories being scanned. The software can use alternative credentials for domain environments, allowing security teams to audit permissions without full administrative rights to file servers.

What is the difference between the Free and Pro versions?

The Free version lets you audit unlimited directories and view results in folder and account views with no time limit. The Pro version adds export to Excel/PDF/CSV/HTML/XML, advanced filtering, scheduled automated audits, change reports, NIS2 compliance features, and priority support.

How do I analyze NTFS folder permissions without writing PowerShell scripts?

NTFS Permissions Auditor lets you analyze folder permissions with a GUI - select your folders or auto-discover shares, click Audit, and browse results in folder view or account view. It resolves nested group memberships automatically, which is the hardest part to replicate in PowerShell. The free version handles the analysis; the Pro version adds export and reporting.

Is there a free NTFS folder permissions reporting tool?

NTFS Permissions Auditor Free lets you audit unlimited folders and view results in two views with no time limit. For exporting reports to Excel, PDF, CSV, HTML, or XML, the Pro version is required, starting at $299 as a one-time purchase with 7-day free trial available.

See Exactly Who Has Access to Your File Server — In Minutes, Not Hours

NTFS Permissions Auditor is a free folder permission audit tool that scans your Windows file shares and maps out every permission — including nested group memberships. Analyze folder permissions, report who has access to what, and track permission changes over time — no PowerShell scripts needed.

On-premises desktop tool Free version available Pro from $299

No email required, no time limit
Try Pro free for 7 days

Buy Pro — $299

One-time purchase · 1 year of updates
Export, scheduling, change reports

Audit Your File Server in 3 Steps

No scripts. No complex setup. Just results in minutes.

1

Select What to Audit

Pick specific folders, enter a network path, or let NTFS Permissions Auditor auto-discover all shares on a file server or across an entire domain. Works with local drives, UNC paths, and DFS.

2

Click "Audit"

The tool reads every folder's ACL, resolves all group memberships (including nested groups), and builds a complete permission map. No configuration needed — just click and wait.

3

View Results & Export

Browse results in folder view or account view. Filter by user, group, or permission level. Export to Excel, PDF, CSV, HTML, or XML for compliance documentation.

Manual PowerShell Method

Write Get-Acl scripts, parse ACL objects, resolve group nesting, format outputs

Time: 3-4 hours per file server

NTFS Permissions Auditor

Select path, click Audit, done

Time: Under 5 minutes

16 MB download | Installs on your workstation | No agents on file servers

NTFS Permissions Auditor vs. PowerShell Scripts

Common Permission Audit Tasks	Using PowerShell Scripts	Using NTFS Permissions Auditor
Audit 10 file shares	3-4 hours writing and debugging scripts	Under 5 minutes
See all folders a specific user can access	Very complex — must resolve all nested group memberships	Built-in Account View — one click
Generate compliance report (Excel/PDF)	Additional scripting for formatting and export	One-click export to 5 formats
Track what permissions changed since last month	You'd need to build your own comparison system	Built-in change reports (Pro)
Find folders accessible by "Everyone"	Custom filter logic per script	Advanced filter manager (Pro)

How to Analyze and Report NTFS Folder Permissions

A step-by-step walkthrough of auditing folder permissions across your Windows file servers

Why Analyze NTFS Permissions?

Every Windows file server accumulates permission sprawl over time. Users change roles, groups get nested inside other groups, and temporary access grants become permanent. The result: folders accessible by people who shouldn't have access, orphaned SIDs from deleted accounts, and "Everyone" permissions on sensitive data that nobody realizes are there.

Manually checking permissions with PowerShell (Get-Acl) works for a single folder but doesn't scale. You'd need to write scripts that recursively traverse directory trees, resolve nested group memberships, handle inheritance, and then format the output into something usable. For a file server with thousands of folders, this takes hours — and misses nested group access that isn't visible in raw ACLs.

What NTFS Permissions Auditor Does Differently

NTFS Permissions Auditor reads ACLs across your entire folder structure, queries Active Directory to resolve every group membership (including nested groups), and presents results in two views that answer the two fundamental permission audit questions:

Folder View — "Who has access to this folder?" Click any folder in the tree to see every user and group with permissions, whether they're inherited or directly assigned, and the exact permission level.

Account View — "What can this user access?" Expand any user or group to see every folder they can reach — including access inherited through nested group membership that isn't obvious from the raw ACL.

Reporting Permissions for Compliance and Auditors

The Pro version exports full permission reports to Excel (XLSX), PDF, CSV, HTML, and XML. You can generate folder-centric reports (organized by directory structure) or account-centric reports (organized by user/group) — whichever format your auditors need. Customizable export fields let you include exactly the data points required for SOX, HIPAA, PCI DSS, GDPR, or internal security reviews.

Tracking Permission Changes Over Time

One-time audits show current state, but ongoing monitoring requires comparing snapshots. The Pro version stores audit results automatically and lets you compare any two audits to generate a change report. This report highlights which folders had permissions added, removed, or modified — essential for detecting unauthorized access changes or documenting approved modifications.

You can schedule audits to run automatically and send change reports by email, so your security team gets notified only when something changes. This transforms a manual process into continuous, unattended monitoring.

No email required | Free version has no time limit

Complete Feature Overview

Everything you need to audit, analyze, and report on NTFS file permissions

Folder View — See Who Has Access to Each Folder

The folder tree view mirrors your Windows Explorer structure. Click on any folder to see its complete permission details: full path, owner, last modified date, every ACL entry, whether permissions are inherited or directly assigned, and the specific permission levels (Full Control, Modify, Read, etc.).

This is the fastest way to answer the question: "Who can access this specific folder, and what exactly can they do?"

Account View — See All Folders a User Can Access

The account view flips the perspective: instead of asking "who can access this folder?", it answers "what can this specific user or group access?" Expand any account row to see every folder they have permissions to, including through nested group memberships.

This view is invaluable for user access reviews, onboarding/offboarding verification, and answering auditor questions about specific individuals.

Change Reports — Track What Changed Since Last Audit Pro

Compare any two audit results side-by-side. The change report highlights which directories, permissions, and group members were added, removed, or modified between audits.

This is the feature security teams rely on for continuous monitoring: schedule regular audits and immediately spot unauthorized permission changes or policy violations.

Advanced Filter Manager Pro

Create targeted filters to find exactly what you're looking for. For example: find all folders where "Mike King" has Full Control, Modify, or Special permissions — even if his access comes through nested group membership (e.g., he's a member of "Managers" which has permissions on the folder).

Filters can be applied during the audit process for faster scans, or after the audit is complete to drill into specific findings.

NTFS Permissions Auditor Discover Shares

Auto-Discover File Shares

Don't know where all your shares are? Enter a server name to discover all its shares automatically. Or enter a domain name to find every computer and every share across your entire domain.

You can also import a list of share paths from a text file for repeatable audits across your environment.

Export to Excel, PDF, CSV, HTML, XML Pro

Export your audit results in the format your auditors or management need. Both folder view and account view exports are supported, giving you flexibility in how you present permission data.

Download sample export files

Folder view	Account view
Excel (XLSX)	Excel (XLSX)
PDF	PDF
CSV	CSV
HTML	HTML
XML	XML

NTFS Permissions Auditor Account Information

Account Information & Group Membership Details

View detailed information for any account: display name, SID, description, department, manager, job title, and more. For group accounts, see direct and nested group members — essential for understanding the full scope of who actually has access through group membership chains.

NTFS Permissions Auditor Exclusion Settings

Flexible Exclusions

Exclude directories by exact path or name pattern, skip system directories and reparse points, set depth limits, and exclude disabled or specific accounts. This keeps your audit results focused on what matters and speeds up scan times on large file servers.

Automated Scheduling

Schedule audits, export reports, and receive email notifications automatically

Scheduled Audits & Email Reports Pro

Set up automated audit tasks that run on a schedule. The Pro version can perform audits unattended, export reports to your preferred format, and email results to your team. Run in change report mode to get notified only when permissions change — ideal for continuous compliance monitoring.

Compliance & Security Use Cases

Security Audits & Access Reviews

Generate comprehensive permission reports for SOX, HIPAA, PCI DSS, GDPR, and other regulatory frameworks. Document who has access to what, track changes over time, and provide auditors with export-ready reports in the format they need.

Learn more about compliance reporting →

NIS2 Compliance

Meet EU NIS2 requirements for access control management with the built-in NIS2 compliance dashboard, automated monitoring, critical change detection with email alerts, and one-click compliance report generation.

Learn more about NIS2 features →

Free vs Pro Version

The free version has no time limit — use it as long as you need. Upgrade to Pro for export, filtering, scheduling, and change tracking.

	Free version	Pro version
Audit an unlimited number of directories
Folder tree view
Account view
Export reports to CSV, Excel (XLSX), HTML, XML and PDF
Customize export fields
Advanced filtering during audit
Advanced filtering after audit
Automatic audit result storage
Change reports — compare two audit results and see what has changed
Scheduled automated audits with email reports
NIS2 compliance dashboard and reports
Guaranteed updates and bug fixes
Priority customer support
		Buy Pro

Pricing

One-time purchase — use the software forever. Includes one year of updates and priority support. Renew annually at a discount to keep receiving updates.

Individual License

$299

Full Pro functionality
For one person — install on your PC, share reports with your team

Get It Now

Company License

$1099

Full Pro functionality
Any number of people in your company can install and use it

Get It Now

Consultant/MSP License

$1349

Full Pro functionality
For IT consultants and MSPs — use at any client site

Get It Now

Some of Our Pro Version Customers

NTFS Permissions Auditor: No-Nonsense file system security auditing and reporting.
Albus Bit NTFS Permissions Auditor is a lightweight, easy-to-use permissions analysis tool that helps you enforce the IT security principle of least privilege.
--Timothy Warner,
Microsoft Cloud and Datacenter MVP from Nashville, TN
(Source)

NTFS Permissions Auditor is very good product.
--Yogesh, Cytel

System Requirements

Supports Windows OS Windows operating system starting from Windows 10 and above (including Windows 11 and Windows Server 2022).
Microsoft .NET Desktop Runtime 10 - here is how to install .NET on Windows and here is the download link.