troubleshooting Question

Folder permissions in Win2k8

Avatar of jtdaly
jtdaly asked on
OS SecurityMicrosoft Server OSWindows Server 2008
16 Comments1 Solution1232 ViewsLast Modified:
I'm setting up a new file server, and rearranging folder / group permissions as part of the project. My problem is that I want to create a top level folder that has departmental folders in it but I'm having permissions problems.
The top level folder is shared so everyone can map a drive letter to it and see inside it for their respective dept. folder, BUT, I don't want them to be able to add or create anything in this top level folder. Also, I want users to have access to their respective departmental folders below, based on their domain group membership.
This seems like it should be easy, but when I set up the top level share as anything but Full Control (sharing properties, not ACL), no matter what I have set up on the next level folder, the users can no longer have full control in the lower level folders.
I've messed with inheritance issues until I'm blue in the face (!) and can't seem to get it right. Seems like Sharing properties keeps trumping ACL properties. Help!
One last thing, this is a Win2k8 member server on a Win2K based AD domain.
ASKER CERTIFIED SOLUTION
kevinhsieh
Network Engineer

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Join our community to see this answer!
Unlock 1 Answer and 16 Comments.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 16 Comments.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros