Security groups require two, best approach.
First. This site is really appreciated. As an IT Pro (better make that amateur) it's a must.
Elevated to first on my billing list when renewals come around.
Also a big thanks to Jeff from TechSoEasy for assistance with my last two questions.
I am trying to plan. Plan and Plan. Something that I see consistenlty in these pages.
I am about to implement SBS2003 Premium in a new client site.
They currently have 2 peer to peer networks lets call them A and B
Ulitmately it is one company with two divisions. Division A provides training services Division B the administration
In order to provide document security for each division my approach was to;
1. Create two new security groups A and B
2. Create two new shares, remove the everyone permission and add the appropriate security group.
3. Create the new users and add them to the appropriate security groups using the Add User Wizard.
Am I on the right track?
Thanks
Philip
PS. My only dlimena with this client is with faxing as they essentially have two inbound phone and fax numbers one for each division. Havent got to that hurdle yet. Email is fine as same domain and I can create distribution groups to handle common email addresses.
Elevated to first on my billing list when renewals come around.
Also a big thanks to Jeff from TechSoEasy for assistance with my last two questions.
I am trying to plan. Plan and Plan. Something that I see consistenlty in these pages.
I am about to implement SBS2003 Premium in a new client site.
They currently have 2 peer to peer networks lets call them A and B
Ulitmately it is one company with two divisions. Division A provides training services Division B the administration
In order to provide document security for each division my approach was to;
1. Create two new security groups A and B
2. Create two new shares, remove the everyone permission and add the appropriate security group.
3. Create the new users and add them to the appropriate security groups using the Add User Wizard.
Am I on the right track?
Thanks
Philip
PS. My only dlimena with this client is with faxing as they essentially have two inbound phone and fax numbers one for each division. Havent got to that hurdle yet. Email is fine as same domain and I can create distribution groups to handle common email addresses.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks to both Dan and Jeff.
Dan I actually own a number of Harry's books so last night I went back to reading both of them (the Sharepoint chapters). It's amazing what you forget when your not using it everyday. It helped. I still think thats initially my client will be better off with standard NTFS shares but this gives me something to build on. As for the Faxes good point will look into it.
Jeff thanks for the advise on the templates as this is probably my solution. So I guess I will create two security templates from scratch.
This being the case as I understand it I should,
1. Create users first
2. Create new security groups second (and add users to each group with the wizard)
3. Create my NTFS shares.
4. Assign my security groups to they shares last.
Thanks
Philip
Dan I actually own a number of Harry's books so last night I went back to reading both of them (the Sharepoint chapters). It's amazing what you forget when your not using it everyday. It helped. I still think thats initially my client will be better off with standard NTFS shares but this gives me something to build on. As for the Faxes good point will look into it.
Jeff thanks for the advise on the templates as this is probably my solution. So I guess I will create two security templates from scratch.
This being the case as I understand it I should,
1. Create users first
2. Create new security groups second (and add users to each group with the wizard)
3. Create my NTFS shares.
4. Assign my security groups to they shares last.
Thanks
Philip
Step 1 and 2 should be reversed.
1. Create the security groups.
1b. Create the templates.
2. Create the users. The Add User wizard will prompt for which template to use and if you did it right, your users will be part of the right security group as soon as they're created.
1. Create the security groups.
1b. Create the templates.
2. Create the users. The Add User wizard will prompt for which template to use and if you did it right, your users will be part of the right security group as soon as they're created.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks guys to you both.
I have just come onsite and now have the next three days to get everything setup. (which translates you maybe seeing more of my posts). I appreciate the time and effort it takes to respond to these posts. In this situation I have decided to split the points as you have both given me some valuable advice however I will leave this topic open for another 24 hours just in case.
Best wishes.
Philip
PS. I brought both of Harry's books with me :-) Just in case, besides you can only read so many hotel bibles.
PPS. Dan I went to your company website http://www.ITforSmall.Biz it redirects to http://sharepoint.paperlesssolutions.org/ which doesnt work.
I have just come onsite and now have the next three days to get everything setup. (which translates you maybe seeing more of my posts). I appreciate the time and effort it takes to respond to these posts. In this situation I have decided to split the points as you have both given me some valuable advice however I will leave this topic open for another 24 hours just in case.
Best wishes.
Philip
PS. I brought both of Harry's books with me :-) Just in case, besides you can only read so many hotel bibles.
PPS. Dan I went to your company website http://www.ITforSmall.Biz it redirects to http://sharepoint.paperlesssolutions.org/ which doesnt work.
If you're getting paid for it, you're a Pro! :-)
Anyhow... you're "almost" on the right track... at least until item 3. If you are going to have two distinct classes of user accounts, then you should create a user template for each of those rather than manually making the assignments each time you add a user. This willl ensure that users are configured properly every time. There isn't really a Template Copy function, so you have to just build it from scratch.. but that's pretty easy to do.
I would concur with Dan's recommendation of SharePoint. So, you may want to consider this instead of using NTFS shares. In order to have users automatically put into specific SharePoint Site groups, you would just add the new User Template that you created as described above, as member of the particular Site, and then the add-user wizard will automatically add new users to that particular site.
In addition to Harry's Brelsford's book, (http://sbsurl.com/best) I also like Eriq Neale's...http://sbsurl.com/unleashed
Jeff
TechSoEasy