Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 246
  • Last Modified:

Tips on file server security

Hi All,

One of my customers (150 users; all Windows 2003 servers) wants to create a new folder structure and security structure on it's fileserver. unfortunatly they want to have permissions on a top level folder, and different permissions on subfolders. Something like:

Folder (Permissions: Everyone full Control)
   - Subfolder 1 (Permissions: John: Full, Mary: Read, Steve: List content)
      - Subfolder 1-1 (Permissions: Steve: Full, John; read, Mary: Read)
etc etc. etc.

This of course will lead to a lot of headache. Untill now I havn't been able to convince them that this is not the right approach. I've been googling on some good documents on how one should setup permissions on a fileserver, But havn't been able to find a good one. Anyone here has a good link ?

Thanks,
Gerard
0
Jubal1234
Asked:
Jubal1234
1 Solution
 
speshalystCommented:
Unfortunately there is no one size fits all when it comes to setting up security..
it really depends on how ur org wants it set.
Best practices usually include create specific user groups and applying permissions to the groups.
Also avoid using 'DENY"
 
0
 
bluntTonyCommented:
Agree - management rarely care what gives the IT dept headaches :0)

MS Best practices for applying permissions : http://technet.microsoft.com/en-us/library/cc779601(WS.10).aspx

This does mention applying permissions at the top level and using inheritance.
0
 
Jubal1234Author Commented:
Great ! This waas exactly what I needed. My headache has gotten better now :o) Thenk !
0

Featured Post

Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now