Need to prevent users from deleting files and folders, but they need to rename them. How to accomplish this?

Apparently the permissions that deny delete also deny renaming of files and folders (this seems absurd to me, but alas it seems to be the case with microsoft's OS).  So in wanting to keep users from deleting things that are potentially important, I'm looking for a solution other than simply restoring mistakenly or maliciously deleted files from tape.   Any ideas?  Thanks all, the help is always greatly appreciated.
QuiteSupersonicAsked:
Who is Participating?
 
Lee W, MVPTechnology and Business Process AdvisorCommented:
I have managed large networks and small networks and talked to people who manage large networks and small networks - read articles in eweek and other such publications.  This is a common problem.  And 75% of restore requests are usually less than 30 days old.   Which is why a Disk-to-Disk-to-Tape solution or something similar is often done - allowing recent files to be quickly restored from a disk based backup.

As for Volume Shadow Copy, it's a feature of Windows 2003 server.  You schedule it and alot disk space to it and it makes copies of any changes to files so that it can reconstruct the files later.  I use it at two clients, running 3x a day, typically at 10am, 1pm, and 4pm, though you can schedule it at other times and more or less frequently.  Then you restore the files using software that is installed on XP or 2000 clients - you right click the file or folder and a "Previous Versions" tab will allow you to restore older copies.

For a potentially more accurate description, see:
http://www.visualwin.com/VSS/
http://www.computerperformance.co.uk/w2k3/disaster_volume_shadow.htm

More technical:
http://technet2.microsoft.com/WindowsServer/en/Library/2b0d2457-b7d8-42c3-b6c9-59c145b7765f1033.mspx
0
 
Lee W, MVPTechnology and Business Process AdvisorCommented:
Volume Shadow Copy in 2003 and your regular backups.

Programs all handle files in their own way - some will open an existing file and save it as a temp file, modify it, then overwrite it - denying delete would prevent the overwrite and ultimately you'd end up with hundreds of file variations.
0
 
QuiteSupersonicAuthor Commented:
Can you elaborate on what Volume Shadow Copy is or does?  Thanks.

I wonder how other admins handle users having permissions to potentially delete valuable data?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.