lgallion
asked on
Windows Server 2008 Folder Permission
Hi,
I created a shared folder A and created several subfolders for different department. I would like users only can access to their own department folder. I went ahead created groups first ( I tried both Security and Distribution) and I then put designated users to those groups.
When I Added the group to the department folder under A user could not see the folder they belong to out there! If I add one user at time they can see the folder. I don’t mind add individually if that department only has five staff. There is one department has hundred staff and manually add them is very time consuming.
Any better way of doing it? By the way, the A folder is located on Windows 2008 R2 32bit Standard, not DC. Group were created on Windows 2003 DC. Our domain lever is 2003.
Thank you very much in advance!
I created a shared folder A and created several subfolders for different department. I would like users only can access to their own department folder. I went ahead created groups first ( I tried both Security and Distribution) and I then put designated users to those groups.
When I Added the group to the department folder under A user could not see the folder they belong to out there! If I add one user at time they can see the folder. I don’t mind add individually if that department only has five staff. There is one department has hundred staff and manually add them is very time consuming.
Any better way of doing it? By the way, the A folder is located on Windows 2008 R2 32bit Standard, not DC. Group were created on Windows 2003 DC. Our domain lever is 2003.
Thank you very much in advance!
ASKER
I used the default rights for parent folder :Everyone, Create Owner, system, administrator.....
I don't understand what other goups is the group A? Group A is root of server C drive and underneath has HR, Admin, Marketing....
I don't understand what other goups is the group A? Group A is root of server C drive and underneath has HR, Admin, Marketing....
Is Group A part of another group? Go to Properties of Group you can see Memeber Of here.
Do you have any Deny in the root directory?
Are you adding permission to Share and Ntfs?
Do you have any Deny in the root directory?
Are you adding permission to Share and Ntfs?
ASKER
Group A is not a part of the other group and I don't have any deny right in the root directory. no share only ntfs.
ASKER
I am sorry parent group - group A is both Share (Everyone is Full) and ntfs rights
When you add departments to the Folders you don't see the folder or you get Access Denied?
ASKER
I don't see the folders.
What folders are you not seeing? The folders inside the Root folder or the Department folder?
ASKER
The department folder
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Under the Share and storage management console the access enumeration is enabled.
Remove this
Check permissions on these folders make sure users have permissions to these folders below on the department folder
ASKER
It works on folder visibily! Everyone can see all department folders now beside themselves, of cause they can not access other than their own. Originally I only wanted them to see their own folder. I can live with it if there is no other way?
ASKER
Thank you, dariusg, for telling me disable the access emmunation and made a big progress now. Like I said if there is no other way I can live with it.
The solution should be http://#a35693286
Solution wasn't selected
You should be using Security groups only. What other groups is the group a part of?