Solved

SetACL: Obtain Permissions from AD Folder Share?

Posted on 2013-06-06
3
464 Views
Last Modified: 2013-06-20
I have a folder structure like this:

Share > Departments x20 Subfolders

I'm migrating the File Share over to another offsite File server that's not part of the domain, and they want to recreate the security groups etc. The department folders all have security groups and users assigned to them as to who can access them.

I've been told that SetACL Command line version is a great took to obtain this information. Does anyone know of the commands or scripts used for this that I send this info down to the offsite team?

Thanks!
0
Comment
Question by:Pancake_Effect
3 Comments
 
LVL 80

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 250 total points
ID: 39229598
You could use robocopy to copy over the files retaining their security.   The problem is that acl's work on SID's not usernames and a new workgroup server will (a) need to have these groups as well and that the SID's will be different.. What you could do is image the source (older) server, install onto the new hardware and then restore onto the new server and then unplug the older server and start using the new server. Using a domain mitigates this problem. The pre-existing SID's that you want to copy over using SETACL will be unknown on the new computer.
0
 
LVL 22

Accepted Solution

by:
eeRoot earned 250 total points
ID: 39232098
Matching the name won't work because the name is just a text label.  The underlying SID is what is used for security authentication.  The only secure options would be to set up a trust to this server or make it a ready only domain controller.
0
 
LVL 4

Author Closing Comment

by:Pancake_Effect
ID: 39262761
Thanks, because of this, we simply just manually recreated everything. Didn't take to long. But I just wanted to make sure we didn't have any other options, which we didn't(didn't want to add a trust)
0

Featured Post

How Do You Stack Up Against Your Peers?

With today’s modern enterprise so dependent on digital infrastructures, the impact of major incidents has increased dramatically. Grab the report now to gain insight into how your organization ranks against your peers and learn best-in-class strategies to resolve incidents.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Skype is a P2P (Peer to Peer) instant messaging and VOIP (Voice over IP) service – as well as a whole lot more.
Microsoft will be releasing the Windows 10 Creators Update in just a matter of weeks. Are you prepared? Follow these steps to ensure everything goes smoothly and you don't lose valuable data on your PC.
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…

828 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question