[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 529
  • Last Modified:

How can I use the cacls command to add the "administrators" group to all roaming profiles stored on the server so I can access them?

In Windows Server 2003, how can I use the cacls command to add the "administrators" group to all roaming profiles stored on the server so I can access them?

I want to do this to avoid having to change permissions individually on each profile.
0
BannerCountySchool
Asked:
BannerCountySchool
  • 2
  • 2
1 Solution
 
Shift-3Commented:
If necessary, take ownership of the folder containing all of the roaming profiles.  Then go to the command line, cd to that folder, and run the following:
cacls *.* /T /E /C /G yourdomain\administrators:f

It's possible to do this all at once using SUBINACL from the 2003 Resource Kit.
http://www.microsoft.com/downloads/details.aspx?familyid=9d467a69-57ff-4ae7-96ee-b18c4790cffd
0
 
BannerCountySchoolAuthor Commented:
Shift-3

     That's a good suggestion, but if I do that won't my users be unable to login as they will no longer own their individual profiles?  

Let me know.

Ken
0
 
Shift-3Commented:
No.  They don't need to have ownership of the folders.  Their NTFS permissions should be unaffected as long as you use the /E switch with CACLS.  This causes it to edit ACLs instead of overwriting the existing permissions.
0
 
BannerCountySchoolAuthor Commented:
Shift-3,
     In the little research I've done, the CACLS command with the switches you've suggested won't change permissions.  Cool.  However, when I take ownership of those file folders all of the existing permissions will be erased (this happens every time I take ownership of an individual file folder; I assume it will happen when I take ownership of the parent folder).   Thus, my users won't be able to login because they will not be listed in the permissions.

CACLS is the solution, if I can get it to run.

Thanks much for your input.

Ken
     
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now