Solved

Windows 2003 single domain- Best practice user grouping for folder access

Posted on 2009-07-01
2
364 Views
Last Modified: 2012-05-07
I'm trying to get an easy and clean idea how to group users for folder access permission in Windows 2003 mixed mode single domain.

For example,
F:\(Data)
|-Accounting
       |-Client Billing Info
           |-Reports
           |-Client Scores
       |-Promotion
           |-Client Billing Info
|-Reservation
|-Management      

Let's say under Accounting folder, I want to give different access permissions for different sub folders.
I have;

UserA
UserB
UserC
UserD

I want to give UserA and UserB modify permission to Client Scores folder and Reports
I want to give UserC read permission to Client Report only
I want to give all read permission to Reservation
I want to deny all to Management.


0
Comment
Question by:crcsupport
  • 2
2 Comments
 
LVL 1

Author Comment

by:crcsupport
ID: 24755720
I can't add Global group to Global group or Local to Local, but only Global to Local, which makes difficult to group users in inheritance for access permissions.
I don't know it's because the functional level of the domain is windows 2000 mixed mode. I can raise the domain to native mode, but wonder how other big companies do user groupings with large mixed mode....
0
 
LVL 1

Accepted Solution

by:
crcsupport earned 0 total points
ID: 24757744

In Windows 2000 mixed mode, Global to Global is not allowed. Domain needs to be raised to Windows 2000 native or Windows 2003 native mode.

Windows 2000 mixed mode: AGDLP (Account to Global to Local to Permission)
Windows 2000/2003 native: AGGUUDLP(Account to Global, Global to Universal, Global/Universal to Local, Local to permission)
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

by Batuhan Cetin Within the dynamic life of an IT administrator, we hold many information in our minds like user names, passwords, IDs, phone numbers, incomes, service tags, bills and the order from our wives to buy milk when coming back to home.…
Many of us need to configure DHCP server(s) in their environment. We can do that simply via DHCP console on server or using MMC snap-in on each computer with Administrative Tools installed in a network. But what if we have to configure many DHCP ser…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question