Solved

Windows Server 2008 - restrict user to one folder

Posted on 2012-04-03
7
2,067 Views
Last Modified: 2012-04-03
Hello,

my question is how to restrict user, so he can only see one folder (and has read/write privileges on it), and nothing else than that folder? In that folder I will put executable program, which is connected to database which will also be in that folder. (so, that folder contains one executable program and database file. User will also be able to create documents in that folder).

It is very important to restrict users not to see or change whole file system or run other programs on the server.

Is this possible on Windows Server 2008 R2?


Best Regards, Frenky
0
Comment
Question by:AntonioRodrigo
  • 4
  • 3
7 Comments
 
LVL 12

Accepted Solution

by:
Imtiaz Hasham earned 500 total points
ID: 37799742
Under security priviledges for that folder, give the user the write permissions.

For all other shared folders, deny the specific user rights.

If this is a regular occurance, you should use Groups to give these permissions and add the users to the folders.
0
 

Author Comment

by:AntonioRodrigo
ID: 37799804
thasmah, thanks a lot for answer - is it possible to prevent the user to see file system? So he can only see his desktop.
0
 
LVL 12

Expert Comment

by:Imtiaz Hasham
ID: 37799815
This would need to be applied via the group policy.

you can hide drive letters altogether.

If you want it for a single user, you need to move them to a different OU on the AD and then apply the GP there.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:AntonioRodrigo
ID: 37799872
Thanks again. Since I'm quite new to Windows Server administration - perhaps some link how to do this or any more detailed information?


Best regards, Frenky
0
 
LVL 12

Expert Comment

by:Imtiaz Hasham
ID: 37799891
you could add me to skype. username (all dots removed) i.h.a.s.h.a.m and I can guide you over skype with this :)
0
 

Author Comment

by:AntonioRodrigo
ID: 37799909
Thanks a lot )) I will add you as soon as I come home - I don't have skype on this computer, nor mic.
0
 
LVL 12

Expert Comment

by:Imtiaz Hasham
ID: 37799919
No worries.

Thanks for accepting the solution.

Let me know what time as I am usually tied up.
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
This tutorial will walk an individual through locating and launching the BEUtility application to properly change the service account username and\or password in situation where it may be necessary or where the password has been inadvertently change…
This Micro Tutorial hows how you can integrate  Mac OSX to a Windows Active Directory Domain. Apple has made it easy to allow users to bind their macs to a windows domain with relative ease. The following video show how to bind OSX Mavericks to …

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now