We are converting users and files from a Netware 3.11 server to a WIndows NT 4.0 domain. We have installed FPNW on the NT side and are using the migration tool to bring over accounts and files. The migration tool successfully brings across the users, groups, and files. Our problem deals with permissions on files after they have been brought over to the NT Server. More specifically, permissions when a netware compatible user accesses files residing on NT.
Our directory structure looks like this:
C:\SYSVOL\USERS\EMPNBR\user1 (user1 has Full Control)
\user2 (user2 has Full Control) etc.
We need to set permissions so that the group EVERYONE does not have access to the "user1,user2" directories. Only individual users should have access to these home directories. We have experienced a problem when removing the EVERYONE groups permissions from these user directories. The user no longer has access from DOS 6.22 clients, and Windows 3.1 or Win 95 clients shelled to DOS. We can actually see these directories when using File Manager or Explorer (logged on as the individual user account). We can even edit and save changes to the files through File Manager or Explorer. However, we are unable to assign a drive through DOS to these directories. We also cannot change to these directories while in DOS even though we can see them with the DIR command.
This creates a major problem as our Netware clients (the majority of which run Win 3.1) must map drives to the server during the login process. At this point, unless we give the group EVERYONE some kind of access to these user directories, we are unable to make these connections. Of course this is not acceptable since we must segregate user files from each other for obvious security reasons.
Anyone have any thoughts on this?