Solved

windows 2008 r2 permission issues

Posted on 2013-11-17
7
393 Views
Last Modified: 2014-02-04
dear gurus,
i do need some one step by step to bottleneck this issue. we are getting problem one of our file server where the issues is likely

- a group on AD created called P&S, some users are added there
- where a folder created on file server root folder for sharing, as "datariy" and then another department above folder created "P&S"
- we give permission of local admin, domain admin, administrators(group) local and P&S all as FULL permission
- slowly we discover the issue that
- 1 user of P&S group folder create sub folder under P&S, and keep files like word excel pdf etc, so 2nd user cant see fails, only folders are seen.
- similary the story of 2nd user create keep some files sub folders so 1st user cant see except blank empty folder.

- the data server is join ad to master server, beside ony file server role, avg antivirus and backup software sonicwall cdp agent installed
- we even delete the all folder inside P&S and restore data from backup, so after restoring again found same problem
- we even reset the permission start from scratch, give permission to admin domain, local admin, then P&S group.
- basically the permission from P&S are not ingertting to subfolder->further again subfolders-> and files as example scenerio
- such issues we never face windows 2003 we used but 2008 does not work similar fashion how 2003 was, this is my understanding the matrix of permission looks change

can someone assist us step by step any tips guideline or bottleneck the issue. any best software to assign sub folder and file level permission available advise plz free demo or commerical even too

kind regards
salim
0
Comment
Question by:tmsa12
  • 4
  • 3
7 Comments
 
LVL 35

Expert Comment

by:Mahesh
ID: 39655699
Correct me if I am wrong
Your issue is, within shared folders, NTFS permissions are not getting enforced on each and every folder and files  from parent ?
0
 

Author Comment

by:tmsa12
ID: 39656502
shared folder AD user and permission not NTFS. as i give clear example detail explanation as well.
NTFS confusing what is this exactly, as ntfs is the partition type. beside give some hints tips problem resolving
0
 
LVL 35

Expert Comment

by:Mahesh
ID: 39656511
Sorry
I am not able to understand your question please

Thanks
0
Ransomware-A Revenue Bonanza for Service Providers

Ransomware – malware that gets on your customers’ computers, encrypts their data, and extorts a hefty ransom for the decryption keys – is a surging new threat.  The purpose of this eBook is to educate the reader about ransomware attacks.

 

Author Comment

by:tmsa12
ID: 39658576
my permission are not working, they do not do inheritance
0
 

Author Comment

by:tmsa12
ID: 39658577
dear gurus,
i do need some one step by step to bottleneck this issue. we are getting problem one of our file server where the issues is likely

- a group on AD created called P&S, some users are added there
- where a folder created on file server root folder for sharing, as "datariy" and then another department above folder created "P&S"
- we give permission of local admin, domain admin, administrators(group) local and P&S all as FULL permission
- slowly we discover the issue that
- 1 user of P&S group folder create sub folder under P&S, and keep files like word excel pdf etc, so 2nd user cant see fails, only folders are seen.
- similary the story of 2nd user create keep some files sub folders so 1st user cant see except blank empty folder.

- the data server is join ad to master server, beside ony file server role, avg antivirus and backup software sonicwall cdp agent installed
- we even delete the all folder inside P&S and restore data from backup, so after restoring again found same problem
- we even reset the permission start from scratch, give permission to admin domain, local admin, then P&S group.
- basically the permission from P&S are not ingertting to subfolder->further again subfolders-> and files as example scenerio
- such issues we never face windows 2003 we used but 2008 does not work similar fashion how 2003 was, this is my understanding the matrix of permission looks change

can someone assist us step by step any tips guideline or bottleneck the issue. any best software to assign sub folder and file level permission available advise plz free demo or commerical even too

kind regards
salim
0
 
LVL 35

Accepted Solution

by:
Mahesh earned 500 total points
ID: 39658632
If my understanding of question is correct, then follow below steps.
Logon to file server with accoun t having local admin rights on file server.
1st assign full control share permissions to required groups on root shared folder.
Then take ownership of root shared folder through NTFS advanced security permissions with "Replace owners on subcontainers" option selected.wait until process gets completed.
Now close all windows and reopen folder properties and go to security tab.
Then add required group on NTFS permissions with required permissions and click apply.
Then from advanced NTFS security permissions window, select "replace all child object permissions with inheritable permissions from this object" checkbox and apply.
Now your top level folder permissions should get applied (inherited) to all sub folders and files without any issue

Basically this might be subfolder ownership issue , thats why users permissions are not getting applied to folder where folder owner is some else user account..
In order to avoid this issue in feature on any shared folders, give full control share permissions to respective users and you need to check which users you assigned full control NTFS permissions and change it to Modify instead
Also remove "Creator owner" group from NTFS permissions of root \ top folder with "replace all child object permissions with inheritable permissions from this object" checkbox selected


Thanks
0
 

Author Closing Comment

by:tmsa12
ID: 39832298
thank you can you close the case plz
0

Featured Post

Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

To effectively work with Diskpart on a Server Core, it is necessary to write some small batch script's, because you can't execute diskpart in a remote powershell session. To get startet, place the Diskpart batch script's into a share on your loca…
A procedure for exporting installed hotfix details of remote computers using powershell
This tutorial will walk an individual through the steps necessary to configure their installation of BackupExec 2012 to use network shared disk space. Verify that the path to the shared storage is valid and that data can be written to that location:…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now