Solved

Folder redirection permissions not replicating to sub files and folders.

Posted on 2013-10-22
6
71 Views
Last Modified: 2015-03-31
An OU in AD was deleted out.  At the time it wasn't a big deal we were able to recreate the users and rejoin the PC to the domain.  One problem we starting having when our folders redirected,  AD assigned the user as the owner of the root folder.  Problem is all the files and folders inside the redirected folders didn't receive the new settings.  The new user accounts match the old ones.  Just seems like AD isn't creating the exclusive owner over all files and folders from the redirected Desktop and My documents.

We have two domain controllers running Server 2008R2 and one running 2003R2.  AD functional level is 2003
0
Comment
Question by:bhiller06
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
6 Comments
 
LVL 78

Expert Comment

by:arnold
ID: 39594843
Usually folder redirects are created from within The user profile. Such that these folders inherit the permissions from the parent folder.


I am unclear what you are asking.
0
 

Author Comment

by:bhiller06
ID: 39594947
The sub files and folders aren't inheriting from the parent with the new created accounts.

Example user1 created a year ago folders redirected to \\server.fileserver.org\users\user1.
Inside the user1 folder we have desktop and My Documents.  User1 can access \\server.fileserver.org\users\user1, just not their Desktop and My Documents.   User1 is the exclusive owner over everything in their redirected folders.  This is only happening with the newly created users that were deleted out of AD.
0
 
LVL 78

Accepted Solution

by:
arnold earned 500 total points
ID: 39595027
You need to make sure that the ownership of desktop and my documents reflects the new SID account as the owner versus the deleted one.

I.e. User1 with sSID sjshshshshsh that has been deleted is different from a newly created
User1 with SSID jsushsusbsysb the parent/root of the USER1 has changed to reflect the new account, but the other folders/directories were not similarly updated

Use cacls, icacls on the server to see what the settings are.
0
 
LVL 24

Expert Comment

by:Sandeshdubey
ID: 39595506
On the folder redirection folders give each users the ownership of the folder.Set the ntfs security perimission to user with full control.You also need to inherit the permission from parent in NTFS security advance setting.
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Background Information Recently I have fixed file server permission issues for one of my client. The client has 1800 users and one Windows Server 2008 R2 domain joined file server with 12 TB of data, 250+ shared folders and the folder structure i…
Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

707 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question