?
Solved

Group Policy on the root c drive

Posted on 2009-07-14
4
Medium Priority
?
456 Views
Last Modified: 2012-05-07
Can someone please advise how i can lockdown our c drive so that users can only save into folders inside c drive and not on the root c drive.  I would like to set this up using group policy, just not sure which setting would lock this down.
0
Comment
Question by:showbizint
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
4 Comments
 
LVL 13

Expert Comment

by:rhinoceros
ID: 24856310
To get a simple one...

Try to hide C drive through Group Policy, and then they can save ALL in their "MyDocument" and "Desktop" only.
0
 

Author Comment

by:showbizint
ID: 24856719
No i can't hide c drive, it must be shown on their list of drives.  I want the users to see all the folder inside c drive, just not save anything on the root.
0
 
LVL 1

Accepted Solution

by:
jb2286 earned 200 total points
ID: 24890764
Using Active Directory may be cumbersome.  Allow the properties of "Read and Execute" for everyone on the root C: and leave the "Write" property unchecked.  Do not choose "Deny" for any of the permissions.  Do not propagate permissions.  Then setup the permissions for the rest of the folders on the C: drive as read, write, and execute with the inclusion to propagate the permissions to child folders.  The desired effect is pretty much the same if I'm not mistaken.
0

Featured Post

Optimize your web performance

What's in the eBook?
- Full list of reasons for poor performance
- Ultimate measures to speed things up
- Primary web monitoring types
- KPIs you should be monitoring in order to increase your ROI

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Compliance and data security require steps be taken to prevent unauthorized users from copying data.  Here's one method to prevent data theft via USB drives (and writable optical media).
Active Directory can easily get cluttered with unused service, user and computer accounts. In this article, I will show you the way I like to implement ADCleanup..
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
Suggested Courses
Course of the Month13 days, 17 hours left to enroll

800 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question