Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 187
  • Last Modified:

Possible rights issue with user`s network drives

Dear Experts,

We ran into an issue with the user network drives. 2 users that I know of have this issue.
Originally when I started, all user personal network drives were setup as shares on the Windows2003 Server. We changed it from being shared.
Now in the properties of the indiviudal user folders is the following:

Security Tab
Domain Admin - Full Control
User - Full Control

Security > Adavanced

Allow - Domain Admins - <not inhereted> - This folder, subfolders and files
Allow  - User-------------- <not inhereted> - This folder, subfolders and files

Allow inhereted is not checked
Replace permissions is not checked

Owner Tab
Administrator

Effective Permissions
None checked.


User`s entire directory is shared and setup as the following:
Security tab
Administrators - Special Permissions
Creator Owner - Special Permissions
Domain Admin - Full Control
System -  Full Control

Security > Advanced
Allow - Administrators - Full Control - <not inhereted>
Allow - Creator Owner -Full Control - <not inhereted>
Allow - Domain Admins- Full Control - <not inhereted>
Allow -System              - Full Control - <not inhereted>

Security > Owner tab
Administartor of the domain
Administrators

Security> Effective Permissions
nothing is checked

here is the weird part. I logged in as the user form a different machine and was able to rename, create and delete files. When user is logged in from her machine, che can create new folders but can't rename any of the folders or subfolders. I thought it had something to do with either the directory (user folder), so i recereated it and still have the same issue. Disjointed the PC from the domain and recreated th elocal profile, still the same issue.

Does it look like permissions are not setup correctly ?
Also, one PC is a laptop the other one is a desktop. Both have Windows XP with SP3 installed. Other users who`s permissions are setup identically don't have the same issue. This used to be an NT domain before, so I'm not sure how things were setup originally.




0
technomic
Asked:
technomic
  • 5
  • 3
1 Solution
 
technomicAuthor Commented:
I am at the point of reimaging the laptop since the issue doesn't appear to be happening on other machines. Just wondering if there is a way to fix the issue without reimaging the laptop. SP3 was installed on machines before we converted from Shared to Individual folders....
0
 
Andres PeralesCommented:
you have to have sharepermissions enabled and everyone set to full control, then use NTFS permissions to secure....
0
 
technomicAuthor Commented:
peralesa,
You are saying to give users Full Control to Users Share and then setup Deny permissions for everyone but the user to whom directory belongs to (on individual user folders), if I understand it correctly....
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 
Andres PeralesCommented:
you don't even have to do a deny, if they are not listed in the security permissions then the will  not be able to access that folder or items within it!
0
 
technomicAuthor Commented:
User Share > Sharing> Permissions > Everyone Full Control
On Security Tab, Domain Admins and System have Full Control. Still no luck... And only these two user folders, everybody else is alright...
0
 
Andres PeralesCommented:
on the security tab add the individual accounts and then give them read or write or full control...
0
 
technomicAuthor Commented:
Here is the thing. The rights may be setup correctly. I logged into the network from a different machine as the users whom had this issue and I'm not having any issues from anotehr machine.
I removed the COmputer Object form AD, also disjoined from the domain on the PC and then rejoined the domain as well as changed the PC name. Still no luck. As far as your last comment, I think I may have misunderstood you somewhere. There is a Share called "Users" there are a number of objects within that share (this folders are not shared). Share itself has following permissions -
User Share > Sharing> Permissions > Everyone Full Control.
Objects within the Share are folders with following permissions
Object Properties> Security
User - Full Control
Domain Admins - Full Control

Security Tab>Advanced>Permissions Tab:
Allow -User-Full Control-<not inhereted>-This Folder, Subfolder and files
Allow -Domain Admins-Full Control-<not inhereted>-This Folder, Subfolder and files

If permissions are set incorrectly, I would not be able to access the directory under the same user account nowehere else. I think it`s not the permisisons but some sort of cached info on the PC itself, but I don't know how to reset it without reimaging the machine....
0
 
technomicAuthor Commented:
I ended up reimaging the box and everything is working fine now.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get 10% Off Your First Squarespace Website

Ready to showcase your work, publish content or promote your business online? With Squarespace’s award-winning templates and 24/7 customer service, getting started is simple. Head to Squarespace.com and use offer code ‘EXPERTS’ to get 10% off your first purchase.

  • 5
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now