• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 389
  • Last Modified:

how to limit active dir user to access to one only folder with server 2003

I have about ten users on a doamin and the server is maily just file and domain server. Im using logmein so as users can acess a shared folder. I have one user though whom i wish to restict to that folder only. I want it so that when he logs on to the server with his domain credentials through lmi. the desktop only shows that folder and no other. I dont want him to see any other folderr or drives --not c drive , not  program files etc -- just the one shared folder. Any ideas anyone and thanks in advance.
0
LeighJor
Asked:
LeighJor
3 Solutions
 
Muzafar MominCommented:
you will need to setup seperate group policy for him for hidding the drive and folder and setup login script to map the only folder that you want him to see
0
 
LeighJorAuthor Commented:
whereabouts  can i set up group policy
0
 
nappy_dCommented:
You can hide drives via a GPO but you cannot hide folders.

To restrict directory access, you need to use NTFS permissions.
0
Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

 
LeighJorAuthor Commented:
Thanks nappy_d but how and where do i find GPO. I can restrict his access to directories and folders ok it is mainly the c: drive i want to hide
0
 
TheGorbyCommented:
Why do they need to actually log onto the server using LMI? Couldn't you just share the one folder he needs access to and map a drive to it on his own computer?
0
 
LeighJorAuthor Commented:
No TheGorby its a large resources folder shared by many, He has to logon remotely as do  10 others.unfortunately this guy only has to look at a folder and sudenly its sub folders disappear and reappear later in windows system folder or some other. He is a valuable intelligent employee with post grad quals but thats just tghe way it is.
0
 
TheGorbyCommented:
Ah yes, the classic "accidental drag-and-drop", always discovered when a user insists that several folders managed to delete themselves!

Ok so the user logs into the server from a remote site, using LMI. I assume you're using the Active Directory authentication integration with LMI? I'm not too familiar with that, when used that way are users then able to access domain resources as if they were logged onto the server with their own domain account?
0
 
LeighJorAuthor Commented:
They use AD authentication to logon to server. LMI permissions will not allow them to delete anything. Unfortunately though the can see folders on other drives c: and e: though they canot access them  and they can access system files etc on c:
0

Featured Post

Free tool for managing users' photos in Office 365

Easily upload multiple users’ photos to Office 365. Manage them with an intuitive GUI and use handy built-in cropping and resizing options. Link photos with users based on Azure AD attributes. Free tool!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now