Solved

Windows 2003 single domain- Best practice user grouping for folder access

Posted on 2009-07-01
2
375 Views
Last Modified: 2012-05-07
I'm trying to get an easy and clean idea how to group users for folder access permission in Windows 2003 mixed mode single domain.

For example,
F:\(Data)
|-Accounting
       |-Client Billing Info
           |-Reports
           |-Client Scores
       |-Promotion
           |-Client Billing Info
|-Reservation
|-Management      

Let's say under Accounting folder, I want to give different access permissions for different sub folders.
I have;

UserA
UserB
UserC
UserD

I want to give UserA and UserB modify permission to Client Scores folder and Reports
I want to give UserC read permission to Client Report only
I want to give all read permission to Reservation
I want to deny all to Management.


0
Comment
Question by:crcsupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
2 Comments
 
LVL 1

Author Comment

by:crcsupport
ID: 24755720
I can't add Global group to Global group or Local to Local, but only Global to Local, which makes difficult to group users in inheritance for access permissions.
I don't know it's because the functional level of the domain is windows 2000 mixed mode. I can raise the domain to native mode, but wonder how other big companies do user groupings with large mixed mode....
0
 
LVL 1

Accepted Solution

by:
crcsupport earned 0 total points
ID: 24757744

In Windows 2000 mixed mode, Global to Global is not allowed. Domain needs to be raised to Windows 2000 native or Windows 2003 native mode.

Windows 2000 mixed mode: AGDLP (Account to Global to Local to Permission)
Windows 2000/2003 native: AGGUUDLP(Account to Global, Global to Universal, Global/Universal to Local, Local to permission)
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The HP utility "HP Lights-Out Online Configuration Utility for Windows Server 2003/2008" could be of great use when it comes to remotely configure a HP servers ILO WITHOUT rebooting the server. We would only need to create and run scripts using thi…
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

695 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question