Solved

How to push local file rights out via domain login

Posted on 2004-04-18
7
141 Views
Last Modified: 2010-04-13
I have a few school districts that run a piece of software which require the students to have read and write access to certain files and folders on the local workstation.  Is there any way this can be done via a logon script or group policy so that we do not need to revisit every machine?
0
Comment
Question by:JCRussell
  • 2
7 Comments
 
LVL 51

Accepted Solution

by:
Netman66 earned 250 total points
ID: 10855424
Use the tools CACLS.exe and place it in a logon script.  You can customize the logon script if necessary to use another tool - ifmember - to determine group membership.

0
 
LVL 41

Expert Comment

by:graye
ID: 10858982
The suggested way to change Access Control Lists via a GPO, is to create a custom security template (using the Security Analyzis and Configuration snap-in).  Then you apply this template via a GPO.

You can view some of the existing templates (with notepad) for examples, if you want to build a template by hand (it's not that hard).

BTW:  There is a section in the GPO editor that says "File System"... but it doesn't do what you think it'd do... ignore that.
0
 
LVL 1

Author Comment

by:JCRussell
ID: 10865186
graye,
Where do I get the Security Analyzis and Configuration snap-in?
0
 
LVL 41

Assisted Solution

by:graye
graye earned 250 total points
ID: 10868171
I usually use add that "snap-in" to the Microsoft Management Console (MMC).... although there are other ways!

from the run command (at the start button), type mmc
then "Add/Remove Snap-in" from the File menu
press the "add" button to get a list of standalone snap-ins
select Security Configuration and Analysis (and/or Security Templates)

If you're not familiar with security templates (some of the terms/concepts are somewhat counter-intuitive), I'd consider reading a lot of background information from the Microsoft web site, before proceeding.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
no desktop when login to windows server 2000 7 322
HP ML 110: This System is not supported platform 1 506
Making a spare domain pc 12 323
How to Test Com Ports on NT 4.0 Workstation 2 269
Both MMF (multi-mode fiber) and SMF (single-mode fiber) are types of optical fiber that can aid in communication applications. These thin strands of silica or glass will allow communication to occur between devices. The transmission of light between…
NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
I designed this idea while studying technology in the classroom.  This is a semester long project.  Students are asked to take photographs on a specific topic which they find meaningful, it can be a place or situation such as travel or homelessness.…
This is a video describing the growing solar energy use in Utah. This is a topic that greatly interests me and so I decided to produce a video about it.

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now