?
Solved

Need urgent help setting permissions correctly on Windows 2003 server

Posted on 2004-09-13
3
Medium Priority
?
161 Views
Last Modified: 2010-04-19
Hi,
I have a Windows 2003 server, I need to set permissions as follows:

and employees folder
within employees
each employee has a folder- ex. dboyle
within each employee folder
a folder called private and one call public

all users should be able to access the public folder
only administrators and the user should be able to access the private folder.

Right now it's not working. I'm not sure how to set this up. It is very urgent though.

Thanks in advance.

Diane
0
Comment
Question by:dboyle53169
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 5

Accepted Solution

by:
talphius earned 2000 total points
ID: 12050510
Several different options for doing this....but here's one:

This is written like you were in a domain, but of course could use local groups\accounts instead

-Create a new folder (i.e. D:\Employees)
-Create subfolders inside this folder for each employee (i.e. D:\Employees\jdoe, D:\Employees\dboyle, etc.)
-Create a separate folder inside each of these for Private and public (i.e. D:\Employees\jdoe\Public, and i.e. D:\Employees\jdoe\Private)
-Set default permissions on root of D:\Employees to Everyone (or Users\Authenticated Users) Read & Write
-In each users private folder (i.e. D:\Employees\jdoe\Private) remove the "everyone" you set above, and explicitly add the permissions to only include the user's account and Domain Admins.  Note:  you will probably have to turn off the inherited permissions (Click Advanced button, Uncheck "Allow inheritable permissions fromt he parent to propigate to this object and all child objects."  When prompted what to do with the current permissions, simply click Remove)
-Share out D:\Employees to your network

The advantage to this option is that every machine simply has one place to go (one shared folder), and then can browse for each folder inside of there.  The security permissions above will allow users to read\write in any folder, except for the Private folders which you have explicitly added only the user and admin.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, I had the need to build a standalone system to run a point-of-sale system. I’m running this on a low-voltage Atom processor, so I wanted a light-weight operating system, but still needed Windows. I chose to use Microsoft Windows Server 200…
I've always wanted to allow a user to have a printer no matter where they login. The steps below will show you how to achieve just that. In this Article I'll show how to deploy printers automatically with group policy and then using security fil…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
In this video you will find out how to export Office 365 mailboxes using the built in eDiscovery tool. Bear in mind that although this method might be useful in some cases, using PST files as Office 365 backup is troublesome in a long run (more on t…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question