I currently have a server that I manage - Windows Server 2008 R2 Standard. It was setup by a former administrator. There are top level shares with sub folders and this is a quick example of what we have:
COMPANY - Everyone has full rights
COMPANY\Accounting - Accounting Users and Accounting Managers have full access
COMPANY\Maintenance - Maintenance Users and Maintenance Managers have full access
COMPANY\Accounting\Managers - Accounting Users are NOT ALLOWED any access, Accounting Managers are allowed FULL access
COMPANY\Maintenance\Managers - Maintenance Users are NOT ALLOWED any access, Accounting Managers are allowed FULL access
This is the way the system has been configured. It uses the User Groups to manage access to folders and sub-folders. I have run into some issues when a folder gets moved or changed and then I need to reconfigure the permissions on all the folders and sub-folders. I also need to remove the inherited permissions to make sure things work as they are configured. This appears to be a very tedious way of doing things and not very efficient with time.
I wanted to get some ideas of a better way to manage a situation like this. The managers love to have their folder inside of the departments main folder and only the manager gets access.
Is there maybe some software packages that will help you manage folders and permissions in a better fashion? Is there another method of configuring things to make this micro-management of the sub-folders on a server a less tedious process? It doesn't need to be changed often but when it does, it takes a while to find out exactly what needs to be changed to get folders to show up and not show up for the appropriate people.
Thanks in advance for any advice on this situation. I am building up a new server and they want it structured this way but I want to find a more efficient way of doing so.