Solved

Windows 2000 Permissions

Posted on 2003-12-10
7
638 Views
Last Modified: 2010-04-14
Hi Experts I have a huge problem...i have a windows 2000 server....i have s folder called  Vol2 that is shared....under security permissions there is a "everyone " group with full access to it...all my users can see that share fine.... the share has many subfolders in it...and  if a user creates a file  then other users cannot access that file .....the users that created that file has to give gim permissions to that file so that he can access it.......is there a way to make it so that everytime a user creates a file in that shared  folder on the windows 2000 server be accessible by any other user with out having the creator of the file have to give gim permissions to it??? thanks experts!! ..
0
Comment
Question by:James Hilloya
  • 4
  • 3
7 Comments
 
LVL 40

Expert Comment

by:Fatal_Exception
ID: 9914258
First, you should never use the Group Everyone in the Security Permissions tab.  This allows to much access and is a security issue.  Delete that group and add the Users group.  This will only allow authenticated users into this share.

Additionally, restrict the permissions as much as possible.  I usually do not allow Full Control, but in this situation, you may want to.

Go to the advanced tab and ck the box "Allow inheritible permissions" to propogate.  See if this fixes your problem.

FE
0
 
LVL 1

Author Comment

by:James Hilloya
ID: 9914865
i went to the security tab  on the share and click on advanced and checked the "allow inheritable permissions from parent to propagate to this opject...............users still cant access files that were created by another user.....any more ideas please??
0
 
LVL 40

Expert Comment

by:Fatal_Exception
ID: 9915294
On that same page, did you try the Reset Inheritable Permissions ck box?  This should reset all permissions for all folders.

let me know what happens.

FE
0
U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

 
LVL 1

Author Comment

by:James Hilloya
ID: 9915586
i tried this at first but it did not work..i got the message "you do not have permission to modifythis file" and i was logged in as administrator!!!...so i had to take ownership of the shared  then after that i tried the reset inheritable permissions box.....this worked!!...thanks for your help...i will award you the points...just one more thing...whats the difference between the users group and the everyone group???....because i had a share witht the everyone group with full access to it.....but none of my users could access that share unless i created their accounts....i thought if the everyone group had full access to a share then anybody could access that share even if that person did not have a account on the server...
0
 
LVL 40

Accepted Solution

by:
Fatal_Exception earned 50 total points
ID: 9915788
The Users group contains ONLY authenticated users in the Domain.  The Everyone group includes everyone that could possibly get onto your network.  For instance, if I was able to hack past your firewall, and you had the Everyone group included in your shares, I could access it through a Null session.  If you had just the Users group, I would have to hack the user name and password to authenticate to the share.  Much better security.

Managing users on network shares takes some time and patience.  Some corporations have admins responsible for only this.  

BTW:  am sorry I forgot to mention that you may have to take ownership.  

Does this help?  :)
0
 
LVL 1

Author Comment

by:James Hilloya
ID: 9915876
thanks... yes it helps.....just dont hack into my network. Thanks
0
 
LVL 40

Expert Comment

by:Fatal_Exception
ID: 9915955
Never would....    :)

Happy Holidays to you and yours.

FE
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
With the rapid rise in mobile usage, mobile devices are here to stay and have become an integral part of doing business. Here are 9 great apps for your BYOD environment.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
Many functions in Excel can make decisions. The most simple of these is the IF function: it returns a value depending on whether a condition you describe is true or false. Once you get the hang of using the IF function, you will find it easier to us…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now