mporter05
asked on
Folder permissions
Hi! We have redone our Windows 2003 enterprise member server and connected it to our SBS2003 domain. We are in the process of creating the users folder and are concerned with permissions. Within the Profile tab of the user, we specify their local file to connect as "Z" using \\server\users\theirshare.
What should proper permissions be on the folder Users and their individual folder? What is the big difference between security at the Share Folder Permissions verses the Security tab of Folder Properties?
We don't want the users to be able to see the Users folder, only their share. If there is no way to do this without them seeing the Users folder, then they must only be able to create, edit, and delete within their folder share but not delete the folder itself. They must not be able to view, edit, or delete other User's folder shares.
Any quick advice or perhaps a "best practices" document would be greatly appreciated. Also, what is normal security for the C$ drive? I know windows adds and shares stuff for itself. Some is inherited by default--such as the standard Everyone or Users groups.
Marcia
What should proper permissions be on the folder Users and their individual folder? What is the big difference between security at the Share Folder Permissions verses the Security tab of Folder Properties?
We don't want the users to be able to see the Users folder, only their share. If there is no way to do this without them seeing the Users folder, then they must only be able to create, edit, and delete within their folder share but not delete the folder itself. They must not be able to view, edit, or delete other User's folder shares.
Any quick advice or perhaps a "best practices" document would be greatly appreciated. Also, what is normal security for the C$ drive? I know windows adds and shares stuff for itself. Some is inherited by default--such as the standard Everyone or Users groups.
Marcia
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
correction:
*note* that with the shared folder, you have to set up the 'shared permissions', but for the individual user folder you need to set up the 'security' permissions.
*note* that with the shared folder, you have to set up the 'shared permissions', but for the individual user folder you need to set up the 'security' permissions.
and then I just set the each user folder to only aloowing that use to vew it (ie. if a folder is \users\dr.binks then I just set the user dr.binks having full permissions on the folder).
another good thing you could do is under the 'security tab' click on 'advaned' and add user permissions there (but you get much more control i.e. you can say that the user cannot create folders)
not that with the shared folder, you have to set up the 'shared permissions', but for the individual user folder you need to set up the 'security' permissions.
hope this helps
~Binks