Dingo321
asked on
Users keep moving directories. Can I lock them down while still leaving full access to files?
I've gone in circles over this for a while, here's the background:
Small accounting firm (20 users at most)
Windows Server 2003 system acting as mostly a file system
Programs are installed and loaded on local drives, and grab data off the server
We have a directory called G:\Clients\ in which all documents reside
An example file would be G:\Clients\Business\Spacel y Sprockets\2005\Engagement Letter.doc
Another example file would be G:\Clients\Trusts\Edward Jones\2004\Accountants Report.pdf
Users need to be able to access and have full rights to these documents. What's happening more and more though, is people are moving entire directories around or deleting them.
Say they want to delete that Engagement Letter.doc above. For some reason they highlight all the client directories at Spacely Sprockets through Z and "accidentally" drag them to something like G:\Tax32\install\wksetup\
I would just make it so they can't delete files, but Office makes .tmp files when you open a file. So when they go to close it, and Office deletes that .tmp file, it won't let them because of the no delete permission. And various other software we use works the same way.
I really need to be able to lock down directories, while still retaining the rights to modify files. I've tried setting a policy that disallows deleting folders, but accessing files. Well under that condition they can still do as in the example above, all the files are moved to G:\Tax32\install\wksetup\ The directories under G:\Clients\Business\S through Z are still there, but now all empty. So yeah, didn't let them delete after the move, but didn't solve the problem :(
I've got to be missing some easy solution to this, or a better way of doing it. I can't just tell them to quit doing it, and can't deny permission to do things like delete files since the main culprit is a boss.
Even if I have to revamp how we handle documents and stuff, that's fine. I just need a way to keep people from moving everything around.
Small accounting firm (20 users at most)
Windows Server 2003 system acting as mostly a file system
Programs are installed and loaded on local drives, and grab data off the server
We have a directory called G:\Clients\ in which all documents reside
An example file would be G:\Clients\Business\Spacel
Another example file would be G:\Clients\Trusts\Edward Jones\2004\Accountants Report.pdf
Users need to be able to access and have full rights to these documents. What's happening more and more though, is people are moving entire directories around or deleting them.
Say they want to delete that Engagement Letter.doc above. For some reason they highlight all the client directories at Spacely Sprockets through Z and "accidentally" drag them to something like G:\Tax32\install\wksetup\
I would just make it so they can't delete files, but Office makes .tmp files when you open a file. So when they go to close it, and Office deletes that .tmp file, it won't let them because of the no delete permission. And various other software we use works the same way.
I really need to be able to lock down directories, while still retaining the rights to modify files. I've tried setting a policy that disallows deleting folders, but accessing files. Well under that condition they can still do as in the example above, all the files are moved to G:\Tax32\install\wksetup\ The directories under G:\Clients\Business\S through Z are still there, but now all empty. So yeah, didn't let them delete after the move, but didn't solve the problem :(
I've got to be missing some easy solution to this, or a better way of doing it. I can't just tell them to quit doing it, and can't deny permission to do things like delete files since the main culprit is a boss.
Even if I have to revamp how we handle documents and stuff, that's fine. I just need a way to keep people from moving everything around.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks...I was wondering what happened to this one!
ASKER
Yes I know, first post and already broke the rules :(
We have been swamped at work and have not been able to attempt to fix this yet. Still having problems...but hopefully can get to this in a few days.
We have been swamped at work and have not been able to attempt to fix this yet. Still having problems...but hopefully can get to this in a few days.
Hi Dingo321,
Dont be freaked out by the administrative orange colour, you are not in trouble!
Closing and managing their own questions is something that everyone has to learn, the fact that you came back and explained your position helps a lot.
I will recommend that this question be left open, but if there is no activity for 21 days, it will be back in the queue for closure.
Thanks, and good luck
-red
EE Cleanup Volunteer
Dont be freaked out by the administrative orange colour, you are not in trouble!
Closing and managing their own questions is something that everyone has to learn, the fact that you came back and explained your position helps a lot.
I will recommend that this question be left open, but if there is no activity for 21 days, it will be back in the queue for closure.
Thanks, and good luck
-red
EE Cleanup Volunteer
http://cc.jlab.org/docs/services/windows/ntfs_permissions.html
you can also audit folders so you can see who is deleting the folders ect