• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 157
  • Last Modified:

Folder Sharing Windows 2003 - sub folder permissions

I have a top level folder in a file share (call it my D: drive)
In the D: drive my users see a folder called Test.
and in the folder Test there are 2 more folders called A and B
My Question:
How to I grant a Domain user the permission to go into Test but only see folder A and NOT see Folder B
I know how to make it so they can't access Folder B but how do I do my settings in Windows 2003 so they can not SEE Folder B?
Thanks!
0
Fragclub27
Asked:
Fragclub27
1 Solution
 
Berkson WeinTech FreelancerCommented:
I don't think this can be done unless you remove "list folder / read data" rights, but that would make it so that files can't be listed either...

I'd suggest, if your scenario works swapping the hierarchy.  Have the the files that users need access to be a subfolder of a folder that only select users can see.   Essentially setup multiple shares and have no private data be in a subfolder of a less restricted share.

Remember that you can always create shortcuts in shares to other shares, so having multiple shares should be a option as well, like this:

d:
    shareforfullaccess
         link to FolderA
         link to FolderB
    share restricted
         linktofolderA

    folder A
    Folder B

Hope this helps.
0
 
pony10usCommented:
Remove share to "Test"
Add a share to "Folder A"
Add a share to "Folder B"

Set permissions to the "Folder A" for Domain User(s)

They won't be able to access "Test" since it isn't a share and therfore they won't see "Folder B".
They won't actually see "Folder A" because it will be treated as a root folder using this method.
0
 
Fragclub27Author Commented:
Removing share is not an option
Perhaps it is not doable in a simple way
0
Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

 
pony10usCommented:
Are you using DFS?  If so then take a look at Access Based Enumeration:  

http://support.microsoft.com/kb/961658

EDIT:  Nevermind.  I just read again that you are using 2003 and this would apply to 2008.
0
 
LazarusCommented:
You need Win Server 2003 R2 or SP1 to be able to use it.

Use ABE for Windows Server 2003 - http://www.microsoft.com/en-us/download/details.aspx?id=17510 This is Access-based Enumeration. This will accomplish what you want.

A How-To for implementation: http://www.windowsnetworking.com/articles-tutorials/windows-2003/Implementing-Access-Based-Enumeration-Windows-Server-2003.html
0
 
Fragclub27Author Commented:
I've requested that this question be deleted for the following reason:

Old
0
 
pony10usCommented:
I think some recognition of the solution and if any of the offered assistance was helpful or not should be included in the reason for requesting the deletion instead of simply stating "Old". There was no acknowledgement to the last 2 experts suggestions.

I do agree that this is old (over a year so I am surprised that it has escaped cleanup).
0
 
Fragclub27Author Commented:
Solved it by using This Folder Only permissions when assigning rights
Thanks,
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now