jerrywin5
asked on
Folder Redirection user files viewable to other users
I have folder redirection setup and working well. However, the users that I have setup folder redirection for can see each others files.
Folder redirection is set to a folder titled UserProfiles on the server. User Bob can browse to the UserProfiles folder on the server and view his, Jim's, Carl's, and all other users files.
Here is how I have it setup:
On the Target tab:
Settings: Basic - Redirect everyone's folder to the same location
Target Folder Location: Create a folder for each user under the root path
Root Path: \\WINSERVER2008\UserProfil es
On the Settings tab:
Grant the user exclusive rights to the Documents is checked
Move the contents of Documents to the new location is checked
Redirect the folder back to the local userprofile location when policy is removed is selected
As for sharing and folder permissions, I have the following for the folder UserProfiles:
Sharing:
Authenticated Users and Administrators have full control
Permissions:
System has full control of This folder, subfolders, and files
Creator Owner has full control of Subfolders and files
Administrator has full control of This folder, subfolders, and files
Domain Admins has full control of This folder, subfolders, and files
Staff (group of users) has full control of This folder, subfolders, and files
No permissions are inherited.
I have ran gpupdate/force
What do I need to do so that users cannot view other users files?
Folder redirection is set to a folder titled UserProfiles on the server. User Bob can browse to the UserProfiles folder on the server and view his, Jim's, Carl's, and all other users files.
Here is how I have it setup:
On the Target tab:
Settings: Basic - Redirect everyone's folder to the same location
Target Folder Location: Create a folder for each user under the root path
Root Path: \\WINSERVER2008\UserProfil
On the Settings tab:
Grant the user exclusive rights to the Documents is checked
Move the contents of Documents to the new location is checked
Redirect the folder back to the local userprofile location when policy is removed is selected
As for sharing and folder permissions, I have the following for the folder UserProfiles:
Sharing:
Authenticated Users and Administrators have full control
Permissions:
System has full control of This folder, subfolders, and files
Creator Owner has full control of Subfolders and files
Administrator has full control of This folder, subfolders, and files
Domain Admins has full control of This folder, subfolders, and files
Staff (group of users) has full control of This folder, subfolders, and files
No permissions are inherited.
I have ran gpupdate/force
What do I need to do so that users cannot view other users files?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Take Ownership of the direcories and files, then you willbe able to change/replace the security settings.
But I'd suggest that you first log in under one account in question (or create one for testing) in order to confirm what the security settings are for the actual user who will be accessing the directory.
But I'd suggest that you first log in under one account in question (or create one for testing) in order to confirm what the security settings are for the actual user who will be accessing the directory.
ASKER
I used SubInACL to resolve the folder permissions issue.
See: https://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Windows/Windows_7
/Q_25011061.html
Thanks for your help, AnnOminous
See: https://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Windows/Windows_7
/Q_25011061.html
Thanks for your help, AnnOminous
ASKER
Found part of solution elsewhere.
ASKER