LCW1400
asked on
Shared Folders Security Permissions - SBS 2011
Scenario….the following was set up when a new server was installed
D:\Shared Data\FolderA and D:\Shared Data\FolderB
Group C does not have permission for the upper level folder Shared Data
Permissions for Group C on both folders A & B are identical – I’ve checked, checked and rechecked.
Read & Execute
List Folder
Read
Write
With Special Permissions of Delete Denied
FolderA – Group C can do the following
Save a new file to the folder
Save an edited version of a file opened from the folder
Create a new folder
Save a new file to a newly created folder
FolderB – Group C can do the following
Save only an empty (0 byte) new file to the folder (the system saves an empty file, then comes back and says the file exists already. When you say ok to replace it then system say it cannot save because the folder is read only).
Save an edited version of a file opened from the folder
Create a new folder
Save a new file to a newly created folder
Why can’t Group C save/write a new file to the existing FolderB?
D:\Shared Data\FolderA and D:\Shared Data\FolderB
Group C does not have permission for the upper level folder Shared Data
Permissions for Group C on both folders A & B are identical – I’ve checked, checked and rechecked.
Read & Execute
List Folder
Read
Write
With Special Permissions of Delete Denied
FolderA – Group C can do the following
Save a new file to the folder
Save an edited version of a file opened from the folder
Create a new folder
Save a new file to a newly created folder
FolderB – Group C can do the following
Save only an empty (0 byte) new file to the folder (the system saves an empty file, then comes back and says the file exists already. When you say ok to replace it then system say it cannot save because the folder is read only).
Save an edited version of a file opened from the folder
Create a new folder
Save a new file to a newly created folder
Why can’t Group C save/write a new file to the existing FolderB?
ASKER
The share permissions are set to allow everyone full control.
There are check marks for both folders for the special permissions box.
I'll look again at the contents/child folders permissions and check the permissions from the command line. Unfortunately, I have to wait until Wed 9/5 to get access to the server. I'll post results then.
Thank you for your suggestions.
There are check marks for both folders for the special permissions box.
I'll look again at the contents/child folders permissions and check the permissions from the command line. Unfortunately, I have to wait until Wed 9/5 to get access to the server. I'll post results then.
Thank you for your suggestions.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Thanks for reporting your findings. Glad to hear you were able to resolve.
--Rob
--Rob
ASKER
Thank you Rob Will for making suggestions that allowed us to keep troubleshooting and narrow the issue down.
I assume the share permissions are set to allow Everyone full control?
Is there a check mark or gray infill in the "Special Permissions" box of the NTFS permissions?
It is possible to have the permissions applied to the parent folder but not the contents or child folders.
If you run from a command line, for each folder, is the output the same? i.e. the permissions are the same?
cacls D:\Shared Data\FolderA