If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.
COURSE of the MONTH
12 days, 20 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
SBS 2011 Mapped Drives for Different Departments
Posted on 2012-12-26
I've recently setup a server running SBS 2011 for approximately 30 users. I now need to configure some mapped drives for them, however they have a few different departments (accounts, HR, etc) and require access to different mapped drives.
I understand how to do drive mapping using group policy (have done it before in 'single department' situations), but not sure how to split the drive maps between the different departments/groups.
Can anyone help with this?
I understand how to do drive mapping using group policy (have done it before in 'single department' situations), but not sure how to split the drive maps between the different departments/groups.
Can anyone help with this?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
3
2
8 Comments
You should consider Group Policy Preferences which will allow you to map drives depending on Security Group Membership, this is very flexible and great if you have people in multiple Departments.
If "Group Policy Preferences" are the 'settings' in Group Policy which allow the mapped drives to be defined, then I've been using those for a while.
From those links above from TG-TIS I think I have to create some Organizational Units (OU's) in the Active Directory Users and Computers. And then create the various mapped drive GPOs and link them to the respective OU. Is that right?
My question then is - how do I put users in the OU groups?
From those links above from TG-TIS I think I have to create some Organizational Units (OU's) in the Active Directory Users and Computers. And then create the various mapped drive GPOs and link them to the respective OU. Is that right?
My question then is - how do I put users in the OU groups?
You can either create Security Group and add the relevent users into each Security Group or you can create various OUs in AD Users and Computers and move the users into that sub-OU.
http://blogs.technet.com/b/askds/archive/2009/01/07/using-group-policy-preferences-to-map-drives-based-on-group-membership.aspx may be of help...
http://blogs.technet.com/b/askds/archive/2009/01/07/using-group-policy-preferences-to-map-drives-based-on-group-membership.aspx may be of help...
Never come across the Security Group idea for drive maps before but I gave it a go and had mixed results.
All my "public" drive maps (not using the security group option) work fine. But my drive maps targeting a security group are not showing up.
I found this link http://www.gpanswers.com/c
I've double checked that my targeted users are part of the new security group I created, and that it is the same security group I'm targeting with the drive map. Frustrating but I'm convinced it's something simple that's stopping this working.
All my "public" drive maps (not using the security group option) work fine. But my drive maps targeting a security group are not showing up.
I found this link http://www.gpanswers.com/c
I've double checked that my targeted users are part of the new security group I created, and that it is the same security group I'm targeting with the drive map. Frustrating but I'm convinced it's something simple that's stopping this working.
Took a few days off over new year and came back to this with a fresh mind. Found that it really was something simple - the permissions on the server hosting the shares were preventing my targeted users from mapping those particular shares!
I will split the points here as you have both offered fantastic advice which I will definitely use in the future.
In summary I've found that mapping drives via group policy and targeting the mappings to individual security groups is a great way to separate data from different business departments.
I will split the points here as you have both offered fantastic advice which I will definitely use in the future.
In summary I've found that mapping drives via group policy and targeting the mappings to individual security groups is a great way to separate data from different business departments.
Featured Post
Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This tutorial will walk an individual through the process of configuring their Windows Server 2012 domain controller to synchronize its time with a trusted, external resource.
Use Google, Bing, or other preferred search engine to locate trusted NTP …
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses
Course of the Month12 days, 20 hours left to enroll
777 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.