Bidonet
asked on
Windows Server 2008 access to local drives as logged on user with admin permissions
Hi,
The server is running Windows Server 2008 R2 Standard in a VMWare ESX environment.
If I log on to the server using the administrator account, there is no problem accessing local drives: C:, E:, F: and G:.
However, if I log on to the server using my account (which is in the local administrators group), I cannot access drives E:, F: and G:.
Permissions on drives are as follow:
- CREATOR OWNER (Special permission)
- SYSTEM (Full control)
- MY_SERVER\Administrators (Full control)
In order to access the drives, I need to grant access to another group that I am member of.
Ex: Branch-Admin (Full control)
So, even though this group is in the MY_SERVER\Administrators group, this is not enough, I have to add this group directly.
How is this possible? Is this something new with Windows 2008? This is not happening with Windows 2003.
Thanks
The server is running Windows Server 2008 R2 Standard in a VMWare ESX environment.
If I log on to the server using the administrator account, there is no problem accessing local drives: C:, E:, F: and G:.
However, if I log on to the server using my account (which is in the local administrators group), I cannot access drives E:, F: and G:.
Permissions on drives are as follow:
- CREATOR OWNER (Special permission)
- SYSTEM (Full control)
- MY_SERVER\Administrators (Full control)
In order to access the drives, I need to grant access to another group that I am member of.
Ex: Branch-Admin (Full control)
So, even though this group is in the MY_SERVER\Administrators group, this is not enough, I have to add this group directly.
How is this possible? Is this something new with Windows 2008? This is not happening with Windows 2003.
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Disabling or enabling UAC requires a reboot of the machine; only changing the notification level doesn't require it.
You can verify whether it's UAC by right-clicking the Notepad shortcut or exe and selecting "Run as administrator"; then use the File Open dialog to browse to the drive(s) in question. If you have access with this elevated notepad, it's definitely UAC.
How do I change the behavior of User Account Control by using the slider?
http://technet.microsoft.com/en-us/library/dd759070.aspx
You can verify whether it's UAC by right-clicking the Notepad shortcut or exe and selecting "Run as administrator"; then use the File Open dialog to browse to the drive(s) in question. If you have access with this elevated notepad, it's definitely UAC.
How do I change the behavior of User Account Control by using the slider?
http://technet.microsoft.com/en-us/library/dd759070.aspx
ASKER
I did restart the server and still access denied on the drives.
Following what you said, I did the notepad test and I can access the drive with "run as administrator" but access denied on drives with notepad without "run as administrator".
The slider is all the way to the bottom at "Never notify me".
Following what you said, I did the notepad test and I can access the drive with "run as administrator" but access denied on drives with notepad without "run as administrator".
The slider is all the way to the bottom at "Never notify me".
ASKER
Finally, I made it work by disabling the option: "User Account Control: Run all administrators in Admin Approval Mode" in Security Policies. (I also had to reboot)
Thanks again for pointing me in the right direction with UAC.
Thanks again for pointing me in the right direction with UAC.
ASKER