At the moment our users save files on their my documents on local computer. But I need to implement personal folder for each user in a server and map their user folder as a drive using the variable %username%.
I have installed a file server and need to add home directory (\\server1\personalshare\user1) for each user from Active Directory. In the folder personalshare I have given read and write permission for authentic users and full permission for only local Administrator and nothing for domain administrator as I need to restrict domain admin access these personal folders.
Now when I tried to add a home folder from AD for a user, I get a error message saying no permission to create the folder in the file server. (I have login to AD server as domain admin and I think this is why I get this message)
I also need to stop user's access someone else's personal folder as \\server1\personalshare\user2.
Could someone guide me on how to implement these personal folders with the right security? My file server is windows 2012 and Domain controller is Wndows 2008 R2.
Thanks in advance.