Solved

Access denied on Share, rights are all OK.

Posted on 2008-06-23
8
1,543 Views
Last Modified: 2012-06-27
A user in our AD domain cannot access a share on a server. He just got a new laptop. No user groups have been changed, laptop is in the correct OU. NTFS and share level rights have been checked and are alright.
Is there anything else I can be missing here? Possible policy settings? "Deny access" somewhere?
0
Comment
Question by:philipcom
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
8 Comments
 
LVL 7

Expert Comment

by:ManicD
ID: 21846321
log on with an admins username and see if they can access it
0
 
LVL 13

Expert Comment

by:TheCapedPlodder
ID: 21846813
Can the user access all other shares and therefore is only having an issue with this one share?

Can you the user connect OK to your domains netlogon shares? e.g. dir \\domain.com\netlogon

If the user logs onto another machine can he/she access the share in question correctly?  If so, then it is down to the laptop in some way, shape or form.

What error does the user get when they attempt to connect to the share?  Can you try to map to the share from the command line:

net use * \\server\sharename

If this doesn't work, try it with an administrator account that you are 100% certain has rights e.g.:

net use * \\server\sharename /user:username password

Let me know how you get on.

Cheers,

TCP
0
 

Author Comment

by:philipcom
ID: 21863474
Thx for the advices. TheCapedPlodder: I tried giving the user local admin on the server (!) before, this did not help either. Gave him local administrator rights: no help.
So finally I added this drive in his logon script which seems to solve the problem (I logged to Citrix with his user name and this worked - user did not test it yet on his laptop). However, this seems to work around the problem rather than solve it.
I'll keep you informed when he tested this.
0
Forrester Webinar: xMatters Delivers 261% ROI

Guest speaker Dean Davison, Forrester Principal Consultant, explains how a Fortune 500 communication company using xMatters found these results: Achieved a 261% ROI, Experienced $753,280 in net present value benefits over 3 years and Reduced MTTR by 91% for tier 1 incidents.

 

Author Comment

by:philipcom
ID: 21897474
Tested: user has mapped drives alright, but trying to access any share by using a UNC path does not work with this account. Strange.
0
 
LVL 13

Expert Comment

by:TheCapedPlodder
ID: 21897999
Try using a FQDN e.g.:

\\server.domain.local\share

Just a test...
0
 

Author Comment

by:philipcom
ID: 21898211
Good test, but:
"Access to the resource \\server.domain.local\share has been disallowed"

BTW: User's original problem (unable to install a software from a network share) has been solved by mapping a drive letter to the share using his logon script. As I am still dying to know how to solve the above issue, I'm still letting this question open.
0
 
LVL 13

Accepted Solution

by:
TheCapedPlodder earned 125 total points
ID: 21900459
That would suggest that you have a group policy object that prevents browsing UNC paths.

I believe that if you prevent access to Start - Run this have the same effect.
0
 

Author Closing Comment

by:philipcom
ID: 31469660
Thanks for the hints. Not completely solved, however. Workaround helped user - for the moment that works for me.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article shows how to deploy dynamic backgrounds to computers depending on the aspect ratio of display
Last week, our Skyport webinar on “How to secure your Active Directory” (https://www.experts-exchange.com/videos/5810/Webinar-Is-Your-Active-Directory-as-Secure-as-You-Think.html?cid=Gene_Skyport) provided 218 attendees with a step-by-step guide for…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …
This video shows how to use Hyena, from SystemTools Software, to bulk import 100 user accounts from an external text file. View in 1080p for best video quality.

738 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question