Solved

SetACL: Obtain Permissions from AD Folder Share?

Posted on 2013-06-06
3
461 Views
Last Modified: 2013-06-20
I have a folder structure like this:

Share > Departments x20 Subfolders

I'm migrating the File Share over to another offsite File server that's not part of the domain, and they want to recreate the security groups etc. The department folders all have security groups and users assigned to them as to who can access them.

I've been told that SetACL Command line version is a great took to obtain this information. Does anyone know of the commands or scripts used for this that I send this info down to the offsite team?

Thanks!
0
Comment
Question by:Pancake_Effect
3 Comments
 
LVL 79

Assisted Solution

by:David Johnson, CD, MVP
David Johnson, CD, MVP earned 250 total points
ID: 39229598
You could use robocopy to copy over the files retaining their security.   The problem is that acl's work on SID's not usernames and a new workgroup server will (a) need to have these groups as well and that the SID's will be different.. What you could do is image the source (older) server, install onto the new hardware and then restore onto the new server and then unplug the older server and start using the new server. Using a domain mitigates this problem. The pre-existing SID's that you want to copy over using SETACL will be unknown on the new computer.
0
 
LVL 22

Accepted Solution

by:
eeRoot earned 250 total points
ID: 39232098
Matching the name won't work because the name is just a text label.  The underlying SID is what is used for security authentication.  The only secure options would be to set up a trust to this server or make it a ready only domain controller.
0
 
LVL 4

Author Closing Comment

by:Pancake_Effect
ID: 39262761
Thanks, because of this, we simply just manually recreated everything. Didn't take to long. But I just wanted to make sure we didn't have any other options, which we didn't(didn't want to add a trust)
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
Developer portfolios can be a bit of an enigma—how do you present yourself to employers without burying them in lines of code?  A modern portfolio is more than just work samples, it’s also a statement of how you work.
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

821 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question