Solved

Assign NTFS permissions to group of computers

Posted on 2010-09-14
6
947 Views
Last Modified: 2012-05-10
In a 2008 domain I created a task that runs on all computers in the domain under the system account.
The tasks tries to copy a file from a network share. I only want a specified group of computers be able to access the file. I created an AD group, added the computers to the group and gave the group appropiate permissions to the file.
However, my task is not able to copy the file (access denied).

When i add the AD group "Domain computers" to the ACL of the file, or I add an single computer account directly everything works fine....
0
Comment
Question by:SjoerdvW
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
6 Comments
 
LVL 17

Expert Comment

by:Tony Massa
ID: 33677292
What are the SHARE permissions set to?

0
 
LVL 57

Accepted Solution

by:
Mike Kline earned 250 total points
ID: 33677316
Did you reboot the computer after you added them to the group, that way the group membership is added to their token ThanksMike
0
 
LVL 57

Assisted Solution

by:Mike Kline
Mike Kline earned 250 total points
ID: 33677331
...and in 2008 you can use a nice trick Darren posted without the reboot   http://sdmsoftware.com/blog/2008/08/22/picking-up-computer-group-membership-changes-without-a-reboot/...but reboot should always work.

Thanks

Mike
0
Free eBook: Backup on AWS

Everything you need to know about backup and disaster recovery with AWS, for FREE!

 
LVL 7

Author Comment

by:SjoerdvW
ID: 33677339
SHARE permissions: everyone FC (witch is enough cause it works when I add the computer directly to the file)
0
 
LVL 7

Author Closing Comment

by:SjoerdvW
ID: 33677443
Thnx Mike, you're a live saver... Was working several hours on this without rebooting the machine!!!
0
 
LVL 57

Expert Comment

by:Mike Kline
ID: 33677529
excellent glad to help, by the way this same principle applies if you add a user to a group.

0

Featured Post

Office 365 Training for IT Pros

Learn how to provision tenants, synchronize on-premise Active Directory, implement Single Sign-On, customize Office deployment, and protect your organization with eDiscovery and DLP policies.  Only from Platform Scholar.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …

691 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question