Permissions on a W2K server

So you have mac shares and pc shares from this win2k server?  If you are connecting viz smb, why do you need a mac(appletalk) share?  What if they connect to the pc share using smb?  does it work?  on the other side of the coin, what if they connect to the mac share using appletalk?  Does it work then?

You are right we don't need the appletalk share when conneting via smb.  I have done some testing on the PC share and I still will get the same results that I get access privilige errors.  I have even gotten to the point now where I have give a user full control and they are still getting access privilige erros.  Can a mac do some type of caching wherein it remembered what was set up previously and is holding that information?

are you connecting to this share from the same user?  does this happen from any mac?  Im not quite sure what you mean by your caching question.  

Yes, I am always trying as the same user on my test mac.  My caching question was in regard to the mac that I'm on, is it possible that since I keep using this one mac and this same user that it is holding something in cache?

I guess I should ask this very simple question....given the scenario of what we want to accomplish....mac and pc users only being able to write files to this share and not being able to read any files...should my permissions be set to list folder contents and write as the security?

to answer the first question.  I dont think it is holding any user info in cache.  You can however trash the tcp/ip preferences to make sure.  I would let it list the folder contents and see if that works.

We have tried the list folder contest and that will not work.  When I create the share and have list and write rights the PCs function perfectly.  The macs cannot write to the shared folder until we give them everything but full control.  This is not even a possiblity as the PCs then also have all access as well as the macs.  Have we missed something completely?

hmm, i cant test this right now because i am not at work, but on tuesday i will be able to test and hopefully figure this out.

I appreciate any help you can provide...this is so frustrating!

been there buddy!  been there!  and it always ends up being something simply overlooked.  Hey have you trieded setting up a new share and trying this?  what version of Mac os are you using to connecT?

I have tried many different shares and different security options to no avail.  We are using Mac OS 10.3.3.  I finally got mad enough to call good old Microsoft and fork over the $245 to find a fix.   Should have known that would get me know where.  I first spoke with the Macintosh services group.   They had me test a share and give everyone full control.  Which then does allow a mac user to write a file up to that server, but then they can also look at all the other files up there.  Not an option as we cannot have students looking at each others assignments.  So, the mac guy got the Windows NTFS permission people on the phone.  I told them the deal that I have both Windows and Mac users that get to the same share and I want them to only be able to write files to the share.  He said we should use just list and write rights, which works just fine for the Windows users but not the Macs.  That's when the mac guy piped in and said that macs have to have the read&execute, read, list and write rights in order to be able to have enough access to write a file to a share.  Imagine my thoughts at that time.  That is not a workable solution at all since that would in effect give everyone the ability to see everything on that share....hmmm...students might really like this option!  So, unless you have something else up your sleeve I think I'm in a world of hurt over here!  I would love it if you actually had some magic to work in order to make this a doable option but I feel that glimmer of hope has just faded.  I at least wanted to update you on what Microsoft has told me.

thanks.  that is very interesting and good to know.  I cant think of any tricks.  Only thing i can think of is to use a Mac to serve that particular share and it should work.  Other than that i cant think of anything.  You may want to try the mac networking area or win2k server area.  maybe they will know some tricks.  If you ever do figure out a workaround, definilty let me know.  Good luck!

Alternatively, if you have access to any web programmers you could set up a simple web page allowing students to browse files on their computer, select their document(s) and then 'submit' them to a dedicated area on the server. You would effectively be providing a 'front end' for the traditional file-copying routine. Considering your main issue here is a lack of platform compatibility, use a platform both Macs and PCs are compatible with and bingo, it works.

It also means you get to store all the files in one location - PC users could continue to use the traditional method or they could use the web system too. I hope this is workable.

It looks like our only solution will be to use the Mac server for the hand-in hand-out.  It was something we want to avoid as it is just another piece in the puzzle and we thought we could do it all with Microsoft, but not to be.  Thanks to everyone for the suggestions and help.  I will not that Apple does have a web dav solution for all of this called Universal Locker.  We are in pilot testing currently and it will become our overall solution, we needed an short term solution in the meantime, but Microsoft couldn't come through.  I'm sure if anyone is interested in seeing more about Universal Locker you could look on Apple's website....I think this will really become an effective solution for many schools.