Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 388
  • Last Modified:

how to limit active dir user to access to one only folder with server 2003

I have about ten users on a doamin and the server is maily just file and domain server. Im using logmein so as users can acess a shared folder. I have one user though whom i wish to restict to that folder only. I want it so that when he logs on to the server with his domain credentials through lmi. the desktop only shows that folder and no other. I dont want him to see any other folderr or drives --not c drive , not  program files etc -- just the one shared folder. Any ideas anyone and thanks in advance.
0
LeighJor
Asked:
LeighJor
3 Solutions
 
Muzafar MominCommented:
you will need to setup seperate group policy for him for hidding the drive and folder and setup login script to map the only folder that you want him to see
0
 
LeighJorAuthor Commented:
whereabouts  can i set up group policy
0
 
nappy_dCommented:
You can hide drives via a GPO but you cannot hide folders.

To restrict directory access, you need to use NTFS permissions.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LeighJorAuthor Commented:
Thanks nappy_d but how and where do i find GPO. I can restrict his access to directories and folders ok it is mainly the c: drive i want to hide
0
 
TheGorbyCommented:
Why do they need to actually log onto the server using LMI? Couldn't you just share the one folder he needs access to and map a drive to it on his own computer?
0
 
LeighJorAuthor Commented:
No TheGorby its a large resources folder shared by many, He has to logon remotely as do  10 others.unfortunately this guy only has to look at a folder and sudenly its sub folders disappear and reappear later in windows system folder or some other. He is a valuable intelligent employee with post grad quals but thats just tghe way it is.
0
 
TheGorbyCommented:
Ah yes, the classic "accidental drag-and-drop", always discovered when a user insists that several folders managed to delete themselves!

Ok so the user logs into the server from a remote site, using LMI. I assume you're using the Active Directory authentication integration with LMI? I'm not too familiar with that, when used that way are users then able to access domain resources as if they were logged onto the server with their own domain account?
0
 
LeighJorAuthor Commented:
They use AD authentication to logon to server. LMI permissions will not allow them to delete anything. Unfortunately though the can see folders on other drives c: and e: though they canot access them  and they can access system files etc on c:
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now