Solved

Folder permissions, redirected my docs, privacy and bkup

Posted on 2009-04-06
2
340 Views
Last Modified: 2013-12-02
When we were initially setup our offsite backup, user's Redirected folder permissions were changed to allow them to be backed up. These are our user's My Docs, redirected to our server. These are meant to be private, but now are available for all to see. I'm just looking for some guidance here. On the redirected folder the sharing permission are full ctrl to bitleaplogon (an acct we created for bkup) and full ctrl to everyone. My question is does the fc need to be there for everyone. Is this what lets them into their own folders. Under security settings are: fc to domain admins and SYSTEM; read&exec, list, read to bitleaplogon and local server\Users. (Not sure why localserver\users is here?). On an individual folder under security the permissions are fc to localserver\admins and everyone. Not sure how this is set to give user access to their files, because there is no list under an indiv. folder for the indiv. Basically, I'm very confused and looking for some help. Is there a standard way to set permission for redirected my docs to make them private and able to be backed up? Thank you.
0
Comment
Question by:percussed
  • 2
2 Comments
 
LVL 9

Accepted Solution

by:
L3370 earned 500 total points
ID: 24079641
How many users are you talking about here?

You can remedy the problem of everyone accessing the folders by removing full control from  the "users" group in the parent folder's security properties.  

The unfortunate part of this is you will need to add the invidudual users user accounts Full control or Modify permissions  manually to each folder, so they can regain access to their folder.

I don't really see a shortcut here. This was an unfortunate side affect that arose from the change.
0
 
LVL 9

Expert Comment

by:L3370
ID: 24079671
also, if you are using that bitleaplogon to backup the resources of the server, you should not have to give that account access to each folder. The backup login should have administrative access to the server, therefore giving it access to backup everything within that server.
0

Featured Post

NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

By default, Carbonite Server Backup manages your encryption key for you using Advanced Encryption Standard (AES) 128-bit encryption. If you choose to manage your private encryption key, your backups will be encrypted using AES 256-bit encryption.
This article is an update and follow-up of my previous article:   Storage 101: common concepts in the IT enterprise storage This time, I expand on more frequently used storage concepts.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through the process of installing the necessary services and then configuring a Windows Server 2012 system as an iSCSI target. To install the necessary roles, go to Server Manager, and select Add Roles and Featu…

756 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question