ols2
asked on
Hiding folders for non members
Hi all. I have a couple of users that connects to one of my servers via vpn to a wondows 2003 server.
They have their own folders set up, like this:
\\server\usera
\\server\userb
The problem is that in givien situations, they can see eachothers folders, for instance if they type \\server.
Is there a way that i can set the system up so that the users can oly see their own folder?
They have their own folders set up, like this:
\\server\usera
\\server\userb
The problem is that in givien situations, they can see eachothers folders, for instance if they type \\server.
Is there a way that i can set the system up so that the users can oly see their own folder?
Oh, and on a side note: to actually hide folders on a file server that users don't have permissions to access, you can activate Access Based Enumeration for the share that the users are accessing the folder. The functionality is included since W2k3 SP1, the download just installs the management tools.
Windows Server 2003 Access-based Enumeration
http://www.microsoft.com/downloads/details.aspx?FamilyID=04A563D9-78D9-4342-A485-B030AC442084
Windows Server 2003 Access-based Enumeration
http://www.microsoft.com/downloads/details.aspx?FamilyID=04A563D9-78D9-4342-A485-B030AC442084
Standard procedure is to share all folders from the level above for authenticated users so they can see the folder structure but to change the security on each to be the user only (plus local/domain admins etc of course) so they can only access their own.
That should sort it.
That should sort it.
ASKER
@oBdA
Will Access Based Enumeration also work on mapped drives?
Because i had already installed Access Based Enumeration, and when i type in \\servername instead of \\servername\userfolder, i still get to see all the other shares. I can not access them, but they are visible.
I have created groups for the folders, since there are several users that have rights to one folder, not one user pr. folder. The user is a member of the group, nothing else, and the share is given to the group, and nothing else.
Hope that made any kind of sence ...
Will Access Based Enumeration also work on mapped drives?
Because i had already installed Access Based Enumeration, and when i type in \\servername instead of \\servername\userfolder, i still get to see all the other shares. I can not access them, but they are visible.
I have created groups for the folders, since there are several users that have rights to one folder, not one user pr. folder. The user is a member of the group, nothing else, and the share is given to the group, and nothing else.
Hope that made any kind of sence ...
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I will pursue the $ solution. Thanx!
But unless you still have Windows NT4 clients, there is no need to individually share home folders. You can simply share the home folder root as "Home$" or whatever, then use \\server\home$\userX as path to the home drive.
Either way, to make sure users aren't accessing each other's home drives, only Administrators, System, and the respective user account should have permissions in the user folders.