asked on
Is there a downside
Our school has gone dual platform by adding Macs. The infrastructure is still Windows, but there is a problem when Mac users connect to their home folder. Initially it was a matter of staff having access to others folders by virtue of the group they belonged to if we gave that group access right at the root folder it propagated down. If we removed the group from the root and gave the access just to the home folder, users found that when opening documents, the were unable to save changes, would have to perform a save as, which produced clutter.
I now see that if I share the users individual folder and allow them to connect all seems to work as it should, plus can restrict access.
Not sure if this is the best way, also wondering if there is a down side to having so many shares, because this would need to happen for all staff (mac users) 110+ and possibly students. If there is something that would work better, open to other ideas.
Thanks
I now see that if I share the users individual folder and allow them to connect all seems to work as it should, plus can restrict access.
Not sure if this is the best way, also wondering if there is a down side to having so many shares, because this would need to happen for all staff (mac users) 110+ and possibly students. If there is something that would work better, open to other ideas.
Thanks
Microsoft Server OSMac OS X
Last Comment
minder49
I was thinking along the same lines as IanTh. If your school uses Active Directory, and the Macs are running at least Snow Leopard, integrating the Macs into your current AD structure is a snap.
User accounts are set up in AD, including Home Directories. This will set the permissions you want automatically. The next step is to configure the Macs to authenticate against your AD.
My company had about 10 Macs when I started, and now we are up to 30. I have been configuring the new Macs this way for a while now and slowly converting the others. Saves a lot of management and logon issues!
User accounts are set up in AD, including Home Directories. This will set the permissions you want automatically. The next step is to configure the Macs to authenticate against your AD.
My company had about 10 Macs when I started, and now we are up to 30. I have been configuring the new Macs this way for a while now and slowly converting the others. Saves a lot of management and logon issues!
ASKER
Minder49, maybe I need to check further. We have found that the way the permissions were set, if a teacher was a member of a group and we gave that group access to the root folder, on the mac a user could drill down and at least see the contents of another users folder. Sharing and giving access to the share to the one person was the only way I have found thus far to stop it. Centrify was taken off the table because of cost.
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
http://www.centrify.com/directcontrol/mac_os_x.asp
hope it helps