Posted on 2005-03-18
Hi! We have redone our Windows 2003 enterprise member server and connected it to our SBS2003 domain. We are in the process of creating the users folder and are concerned with permissions. Within the Profile tab of the user, we specify their local file to connect as "Z" using \\server\users\theirshare.
What should proper permissions be on the folder Users and their individual folder? What is the big difference between security at the Share Folder Permissions verses the Security tab of Folder Properties?
We don't want the users to be able to see the Users folder, only their share. If there is no way to do this without them seeing the Users folder, then they must only be able to create, edit, and delete within their folder share but not delete the folder itself. They must not be able to view, edit, or delete other User's folder shares.
Any quick advice or perhaps a "best practices" document would be greatly appreciated. Also, what is normal security for the C$ drive? I know windows adds and shares stuff for itself. Some is inherited by default--such as the standard Everyone or Users groups.