Add local computer account to server share permissions

I want to add a local computer user account to a server share..Is this possible?
judsoncollegeAsked:
Who is Participating?
 
Lee W, MVPConnect With a Mentor Technology and Business Process AdvisorCommented:
You cannot apply security or groups to local accounts BEYOND the local system.  Create a domain user account for the person and restrict them appropriately using their account properties and appropriate security settings in Group Policy and the file system.
0
 
Andrej PirmanCommented:
Yes, it is.
But first you need to create the identical user account on SERVER, with identical USERNAME and PASSWORD as on local computer, and then edit share permissions on SERVER and add this user to have desired privileges.

But note, that resulting permissions are the combination of NTFS Permissions (Security Tab) and SHARE Permissions (Share Tab), so do not forget to edit permissions in both tabs under Properties of shared folder on server side.
0
 
Lee W, MVPTechnology and Business Process AdvisorCommented:
Let's be clear - that's not the same thing  - you can work around it labsky suggests, but you cannot add local accounts to other machines.
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
Andrej PirmanCommented:
Note 2:
My previous answer was assuming that you are talking about SERVER in WORKGROUP environment, NOT in Active Directrory DOMAIN environment. Because in DOMAIN environment, procedure is a bit easier, but different.
0
 
Andrej PirmanCommented:
And yes, Leew is correct - my 1st answer is a workaround, which would work, but is not the proper way of setting it up :)
0
 
judsoncollegeAuthor Commented:
I am talking about in an Active Direcotry environment.
0
 
AmericomConnect With a Mentor Commented:
You should probably manage your account appropriately to avoid unnecessary administrative works. If you already have active directory then stay away from local account. When password expired, the workaround with same username and password of a local account to match with domain account will be problematic in the long run.
0
 
BanthorConnect With a Mentor Commented:
Best Practices supports All scenarios
Create a Local Group to access the resouce share
Add Domain Groups and Local Members to the local resource Group.
  Groups should exist for each set of descrete permissions
Never add a User to a resource, only include them into groups
Never use Deny
Disable Guest.
Disable Administrator
Replace Everyone, with Authenticated Users

 
 
0
 
judsoncollegeAuthor Commented:
Thanks everyone.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.