The access-based enumeration allows to display in a network share, only folders and files whose use has at least a right of reading. Other documents and folders will be hidden.
Enabling this feature will increase the CPU resource consumption on the file server because at each access this will check what should be displayed.
Enabling EBA does not hide the network share.
In order to work properly, the NTFS rights must be set correctly and requires disabling the inheritance and removing the SERVER \ Users group rights because this group contains the Domain Users group.
Enable enumeration based on access EBA
The EBA is now enabled on the shared folder, we will see now configure the rights.
Configure NTFS rights to use EBA
Access-based enumeration provides additional security by hiding folders that users do not have access to, to work properly this involves properly configuring NTFS rights.