Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 363
  • Last Modified:

windows 2008 share - security permissions

When trying to assign the "Domain\Users" object to a shared folders in a  Windows 2008 domain, it is saying the object cannot be found.    From both of the DCs we have no problem assigning the "Domain\Users" object.     I tried from multiple other domain PCs and Servers, logging in with the same admin account, but get the error that it can't find that object.  It has no problems finding other OUs and adding those permissions.

Thanks
0
tiptechs
Asked:
tiptechs
  • 4
  • 4
1 Solution
 
Michael MachieFull-time technical multi-taskerCommented:
Make sure that when you try to add the 'Domain Users' to the permissions that the 'From this location' is specified as your Domain. If it is showing the computer name then you will get this message.

Try typing 'Domain' in the 'Select users, Computers, Service Accounts, or Groups' , then click 'ok', to see if the Domain accounts and groups are listed. You should see 'Domain Admins, Domain Computers, Domain Guests, Domain Controllers, and Domain Users' and any other Domain Groups you have created. If 'Domain Users' is not listed then that is why you are getting this message.  

If the Server is not part of the Domain then you will also receive this message.
0
 
tiptechsAuthor Commented:
The correct domain is showing up.  I can choose browse and see everything in the domain.    I select the domain "domain.com" and then choose object "Users" and that is when it says it can't be found.  Though this works on the DCs.
0
 
Michael MachieFull-time technical multi-taskerCommented:
When using 'Domain' instead of Users, do you see 'Domain Users' listed?
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
tiptechsAuthor Commented:
I am trying to use just "Users" which is the default container.    We have a few users setup under Domain.com -> Users instead of being in a seperate OU.   I can select those other OUs with no problem.  The "Users" container works fine from the DCs, but not from any other server / pc on the domain.
0
 
tiptechsAuthor Commented:
Thinking this is some sort of permissions issue, but cannot find anything.  If I do an advanced search from a member servers shared folder under adding security permissions.    It will find everything in the domain except for the default containers such as "Users", "Computers", etc..

Thanks.
0
 
Michael MachieFull-time technical multi-taskerCommented:
On the DCs is a default AD container called Users, as you are aware. You do not apply permissions to a share via AD container when the folder is not located on the DC, only via a User account or Group(s). Not only that but permissions via an UO is not recommended.

I was able to verify that you can indeed select some default OU containers, not manually created ones, in the permissions box - but only from a shared folder local to the DC. You cannot do this from a folder not on a DC.  

You will need to create a Security Group and add the desired Users into that group, then provide that Group permissions to the folder, or, add each User individually.
0
 
tiptechsAuthor Commented:
Thanks Machienet.   I was thinking this might be a default behavior, but wasn't sure.

Thanks again.
0
 
Michael MachieFull-time technical multi-taskerCommented:
Sure thing. Try it out and if when you verify it is working, please mark my answer as the Solution :)
0

Featured Post

NEW Veeam Backup for Microsoft Office 365 1.5

With Office 365, it’s your data and your responsibility to protect it. NEW Veeam Backup for Microsoft Office 365 eliminates the risk of losing access to your Office 365 data.

  • 4
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now