NTFS Permissions issue

Do the share permissions reflect the ntfs permissions that you set up? I would make sure they're mirrored and see if the issue persists.

The share permissions are everyone > full. I was going to set it to everyone > read, and authenicated users to change or full but didn't get that far and ran into these issues.

Are they set to all folders, subfolders, and files? Or are they possibly set up for JUST that folder?

For this particular share I have the Admin group, the 3 groups mentioned above and the system group by default as the only groups with permissions. Inheritance at the main folder is off because I don't want the permissions from above to apply here. I assume that is correct. Then I did check and apply permissions to all child objects and entities from that point so that all subfolders, files, etc. would get the permissions from this shared folder. I also double checked a few different subfolders and files and they are inheriting from above and look like the permissions I stated earlier.

I came across a couple different sites with extensive tutorials on setting up and troubleshooting permissions issues. Hopefully they help your situation.

http://www.informit.com/articles/article.aspx?p=1352790

http://www.techrepublic.com/article/step-by-step-how-to-set-and-troubleshoot-ntfs-permissions-in-windows-xp/1055994

Further test with a read/write test account, I can copy a txt file from my desktop to the share location. I can also open that file and edit it, then save. I cannot create a file in notepad and save directly to that location without getting a 'file already exists' error.

Have you tried to put the same people/groups in both permission sections on the folder? one under sharing then permissions button and then security tab

I tried putting the groups in the sharing section and gave them all full control. I was able to save a new document from notepad directly to the share now but still get prompted to overwrite because the file already exists when it doesn't. But then if I choose to overwrite it does save correctly. Getting closer...

Is it a mapped drive or just going to the location?

If it is a mapped drive try to disconnect and reconnect it, is it happening on multiple computers or only multiple accounts on the same computer?

It is a mapped drive and it's happening to multiple accounts on different pc's within the same ntfs group. I even tried to create a new group, assigned ntfs read/execute, list, read, and write then assigned a user to the new group and made sure the new group is specifically allowed full control for the share. Same result.

This sounds to me like a corruption issue I just dealt with.
I'd recommend first running a chkdsk on that volume - that will go through and verify all security descriptors on the volume.

The solution I had with my customer, just this week, was Active Directory Corruption within the user profile of 5 employees.  All 5 were having similar problems accessing files, saving files... The machines thought they were disconnected from the domain and would try saving files in offline mode - to be synched up later.

I opened the user account up in ADSIEDIT.msc and looked at the properties of the user account, and there it was, I found the corruption by comparing lines between a user that didn't have problems and one that did.  It was the same in each profile, invalid data in variables that should have no data. I cleared the lines and was back in business.  I could provide more detail if it is of any interest.

Any additional information would be great. Would the corruption be with the user or the security group though? If I move a user to the modify group, they don't have any issues?

So if you create a new security group, then add a user to that group, and apply that new group to the folder access, it works?
I would say you have a corrupt security group.

Joel

No, sort of. I created 3 groups as stated above, a modify group, read/write group, and read. If the user is in the modify group everything works fine. It's the read/write group where they cannot create or edit, change, save, etc. That's were I get the file saving issues mentioned above. That's were I get the issues when moving between groups, so I created a new read/write group but get the same results with that new group. I know it sounds like I have it configured wrong but I don't see it.

Can members of the read/write group create new files in the directory?

They can drag files to that location but when trying to save or save as in notepad for example to that share or location is when they get the 'file already exists' issue mentioned above. They also cannot rename files or edit and save a file that already exists there.

So why do I get 'file already exists' errors when trying to save as mentioned above?
 
Also, if read/write does not allow me to edit (which I thought was the purpose of write), then how do I allow edit and rename with giving delete permissions (which I thought was the purpose of modify)? Thanks again for the info.

Sorry, the above post should say how do I allow edit and rename without giving delete permissions?