Managing Active Directory does not always have to be complicated. If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why
Solved
SBS 2011 Mapped Drives for Different Departments
Posted on 2012-12-26
I've recently setup a server running SBS 2011 for approximately 30 users. I now need to configure some mapped drives for them, however they have a few different departments (accounts, HR, etc) and require access to different mapped drives.
I understand how to do drive mapping using group policy (have done it before in 'single department' situations), but not sure how to split the drive maps between the different departments/groups.
Can anyone help with this?
I understand how to do drive mapping using group policy (have done it before in 'single department' situations), but not sure how to split the drive maps between the different departments/groups.
Can anyone help with this?
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
3-
3
2
8 Comments
You should consider Group Policy Preferences which will allow you to map drives depending on Security Group Membership, this is very flexible and great if you have people in multiple Departments.
Active 6 days ago
If "Group Policy Preferences" are the 'settings' in Group Policy which allow the mapped drives to be defined, then I've been using those for a while.
From those links above from TG-TIS I think I have to create some Organizational Units (OU's) in the Active Directory Users and Computers. And then create the various mapped drive GPOs and link them to the respective OU. Is that right?
My question then is - how do I put users in the OU groups?
From those links above from TG-TIS I think I have to create some Organizational Units (OU's) in the Active Directory Users and Computers. And then create the various mapped drive GPOs and link them to the respective OU. Is that right?
My question then is - how do I put users in the OU groups?
You can either create Security Group and add the relevent users into each Security Group or you can create various OUs in AD Users and Computers and move the users into that sub-OU.
http://blogs.technet.com/b/askds/archive/2009/01/07/using-group-policy-preferences-to-map-drives-based-on-group-membership.aspx may be of help...
http://blogs.technet.com/b/askds/archive/2009/01/07/using-group-policy-preferences-to-map-drives-based-on-group-membership.aspx may be of help...
Active 6 days ago
Never come across the Security Group idea for drive maps before but I gave it a go and had mixed results.
All my "public" drive maps (not using the security group option) work fine. But my drive maps targeting a security group are not showing up.
I found this link http://www.gpanswers.com/c
I've double checked that my targeted users are part of the new security group I created, and that it is the same security group I'm targeting with the drive map. Frustrating but I'm convinced it's something simple that's stopping this working.
All my "public" drive maps (not using the security group option) work fine. But my drive maps targeting a security group are not showing up.
I found this link http://www.gpanswers.com/c
I've double checked that my targeted users are part of the new security group I created, and that it is the same security group I'm targeting with the drive map. Frustrating but I'm convinced it's something simple that's stopping this working.
Active 6 days ago
Took a few days off over new year and came back to this with a fresh mind. Found that it really was something simple - the permissions on the server hosting the shares were preventing my targeted users from mapping those particular shares!
I will split the points here as you have both offered fantastic advice which I will definitely use in the future.
In summary I've found that mapping drives via group policy and targeting the mappings to individual security groups is a great way to separate data from different business departments.
I will split the points here as you have both offered fantastic advice which I will definitely use in the future.
In summary I've found that mapping drives via group policy and targeting the mappings to individual security groups is a great way to separate data from different business departments.
Featured Post
If your organization has a need to mass-create AD user accounts, watch this video to see how its done without the need for scripting or other unnecessary complexities.
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
Group policies can be applied selectively to specific devices with the help of groups. Utilising this, it is possible to phase-in group policies, over a period of time, by randomly adding non-members user or computers at a set interval, to a group f…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008.
Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Suggested Courses
Course of the Month10 days, 3 hours left to enroll
609 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.