?
Solved

Exchange 2000 permissions on public folders

Posted on 2004-03-30
11
Medium Priority
?
502 Views
Last Modified: 2010-04-13
How do I set permissions on public folders so that certain OU's or Users don't have access to them?
I am using Exchange 2000.
0
Comment
Question by:The_Master_Chief
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
  • 2
  • +1
11 Comments
 
LVL 25

Expert Comment

by:mikeleebrla
ID: 10717258
OUs aren't used for security,, you will need to set up a security group for this,,,,but you set up security for public folders from within exchange system manager on the server. From there go to folders, public folders,,, rightclick on the public folder you want to restrict and click properties.. then go to the permissions tab,,, then click on client permissions,, this will open up the page where you set permissions for public folders.. it is pretty self explainetory from there..  hope this helps..
0
 
LVL 2

Author Comment

by:The_Master_Chief
ID: 10717487
How would I set up a security group if OU's aren't used for this?
0
 
LVL 25

Expert Comment

by:mikeleebrla
ID: 10717505
on a domain controller,, go to active directory users and computers,,,, from there go to users,, rightclick and choose new,, then security group and add it there
0
Does Your Cloud Backup Use Blockchain Technology?

Blockchain technology has already revolutionized finance thanks to Bitcoin. Now it's disrupting other areas, including the realm of data protection. Learn how blockchain is now being used to authenticate backup files and keep them safe from hackers.

 
LVL 14

Expert Comment

by:huji
ID: 10717552
add all members of this OU to a group and then change the security options for that group.
Huji
0
 
LVL 18

Expert Comment

by:JConchie
ID: 10718971
In a little more detail, you create a local group for a particular resoure(s), give it permissions to the resource. Then create  a global group and add it to the membership of the local groups of the resources that you want members of the global  group to have access to.......then add individual users to the security group.

0
 
LVL 18

Expert Comment

by:JConchie
ID: 10719003
a little more background........the different types of security groups are used to set access permissions for resources.
OUs are used to organize users and/or computers so that you can regulate that particular unit (not group) through group policy.  As usual MS's terminology seems designed to confuse.
0
 
LVL 2

Author Comment

by:The_Master_Chief
ID: 10719040
Let me see if I got this...

Example:
I have an OU for a location in California that I do NOT want to have access to any public folders.
I have many other locations throughou tthe country with corresponding OU's that CAN have access to the public folders.

All I have to do is:

1) Create a security group for public folders
2) Assign all of the members of that California OU to the securty group
3) Add the new public folders security group to the client permissions of the corresponding public folders and specify the rights for that group.

Is that correct?
0
 
LVL 18

Accepted Solution

by:
JConchie earned 200 total points
ID: 10719225
That's one way to do it..........put the users from the california ou into the security group, then *Deny* access for that security group on the public folders........you can make your life easier down the road if you create local group and give it access to the folders, then put your "Deny" global group into the membership of the local group.

The other way around would be to put all the users you want to have access into the global group and give it full access.

The point of all this is that in a resource (in your case, the public folder)  that has several layers of sub-folders and a lot of folders.........if you give individual users security rights on the root folder, every time you add or delete a user, you have to push the new settings down to all the sub-folders and files....which can take a lot of time on a large resource.......but if the security group has the permissions, adding or removing a user from membership in the group requires no further action on the permissions.
0
 
LVL 2

Author Comment

by:The_Master_Chief
ID: 10719711
Well I created a global security group called "Public Folders Deny".
I added one user for testing purposes and went to exchange system manager > the public folders store and under security I added the new deny group and set to deny all.  That did not prevent the user from opening that public folders.  

However, when I added the deny group to an individual public fiolder's client permissions and denied there, the user was unabel to access that particular public folder.  

How can I make it so that group can't access anypublic folders?

I am not worried about the points becase JConchie answered my question, but a little more detail on this would be great.
0
 
LVL 18

Expert Comment

by:JConchie
ID: 10719845
Don't think you can do this on the Store itself......drop down one more level to the "Public Folders" object and try setting it there.........but it may be that you have to do it folder by folder........if you have folders that were created by users rather than by an admin, they own the folder and may have set permissions to deny inheritance from above.
0
 
LVL 2

Author Comment

by:The_Master_Chief
ID: 10719873
I was not able to set permissions on the sub folder

 - Public Folder Store (server name)
     |
      - Public Folders

I will have to do it to individual folders.
Thanks
0

Featured Post

Get 15 Days FREE Full-Featured Trial

Benefit from a mission critical IT monitoring with Monitis Premium or get it FREE for your entry level monitoring needs.
-Over 200,000 users
-More than 300,000 websites monitored
-Used in 197 countries
-Recommended by 98% of users

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
What's worse than having your data encrypted by ransomware? Getting attacked by a so-called "wiper," which simply destroys the data and offers you no hope of ever seeing it again.
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question