Folder Sharing Windows 2003 - sub folder permissions
I have a top level folder in a file share (call it my D: drive)
In the D: drive my users see a folder called Test.
and in the folder Test there are 2 more folders called A and B
My Question:
How to I grant a Domain user the permission to go into Test but only see folder A and NOT see Folder B
I know how to make it so they can't access Folder B but how do I do my settings in Windows 2003 so they can not SEE Folder B?
Thanks!
In the D: drive my users see a folder called Test.
and in the folder Test there are 2 more folders called A and B
My Question:
How to I grant a Domain user the permission to go into Test but only see folder A and NOT see Folder B
I know how to make it so they can't access Folder B but how do I do my settings in Windows 2003 so they can not SEE Folder B?
Thanks!
Remove share to "Test"
Add a share to "Folder A"
Add a share to "Folder B"
Set permissions to the "Folder A" for Domain User(s)
They won't be able to access "Test" since it isn't a share and therfore they won't see "Folder B".
They won't actually see "Folder A" because it will be treated as a root folder using this method.
Add a share to "Folder A"
Add a share to "Folder B"
Set permissions to the "Folder A" for Domain User(s)
They won't be able to access "Test" since it isn't a share and therfore they won't see "Folder B".
They won't actually see "Folder A" because it will be treated as a root folder using this method.
ASKER
Removing share is not an option
Perhaps it is not doable in a simple way
Perhaps it is not doable in a simple way
Are you using DFS? If so then take a look at Access Based Enumeration:
http://support.microsoft.com/kb/961658
EDIT: Nevermind. I just read again that you are using 2003 and this would apply to 2008.
http://support.microsoft.com/kb/961658
EDIT: Nevermind. I just read again that you are using 2003 and this would apply to 2008.
You need Win Server 2003 R2 or SP1 to be able to use it.
Use ABE for Windows Server 2003 - http://www.microsoft.com/en-us/download/details.aspx?id=17510 This is Access-based Enumeration. This will accomplish what you want.
A How-To for implementation: http://www.windowsnetworking.com/articles-tutorials/windows-2003/Implementing-Access-Based-Enumeration-Windows-Server-2003.html
Use ABE for Windows Server 2003 - http://www.microsoft.com/en-us/download/details.aspx?id=17510 This is Access-based Enumeration. This will accomplish what you want.
A How-To for implementation: http://www.windowsnetworking.com/articles-tutorials/windows-2003/Implementing-Access-Based-Enumeration-Windows-Server-2003.html
ASKER
I've requested that this question be deleted for the following reason:
Old
Old
I think some recognition of the solution and if any of the offered assistance was helpful or not should be included in the reason for requesting the deletion instead of simply stating "Old". There was no acknowledgement to the last 2 experts suggestions.
I do agree that this is old (over a year so I am surprised that it has escaped cleanup).
I do agree that this is old (over a year so I am surprised that it has escaped cleanup).
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I'd suggest, if your scenario works swapping the hierarchy. Have the the files that users need access to be a subfolder of a folder that only select users can see. Essentially setup multiple shares and have no private data be in a subfolder of a less restricted share.
Remember that you can always create shortcuts in shares to other shares, so having multiple shares should be a option as well, like this:
d:
shareforfullaccess
link to FolderA
link to FolderB
share restricted
linktofolderA
folder A
Folder B
Hope this helps.