Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

NTFS Permissions on Server 2008 R2, allowing access to subfolder only

Posted on 2014-02-07
6
Medium Priority
?
1,408 Views
Last Modified: 2014-02-15
Hi,
I have inherited a really messy file server and am having problems getting the right access to  user to a subfolder.

Have a Departments Share. Inside that share there are a large number of sub folders that don't have any individual share, just NTFS permissions.

Have an Accounting folder inside the departments share, and a folder "needs access" inside that. So I have a user I want to be able to mount the share Departments (works), then click Accounting Folder and only be able to see the list of folders underneath and then click "Needs Access folder" to which they have full access.

Thought that setting special permission Traverse Folder/Execute on folder Accounting for this user, then setting NTFS permissions on the Needs Access folder would allow this to work but when I try this the user is unable to open the Accounting Folder.

I have setup a share directly to the "Needs Access" folder to get around this but would like to get this setup correctly.
0
Comment
Question by:adamant40
  • 3
  • 2
6 Comments
 
LVL 38

Expert Comment

by:Mahesh
ID: 39842733
What share permissions do you have on departmental share folder ?

It must have change share permissions to users on departmental folder, and then you need to give users list folder contents \ read, read and execute and list folder permissions on same folder with this folders, subfolders and files as a scope if you want users to access all folders underneath departmental share folder
OR
this folder only as a scope if you want that users should be able to access specific folders only underneath departmental share folder.
Further,This permissions must be getting inherited by accounting folder and then on "Need Access" folder you should give him modify \ required permissions.

May be your inherited permissions are not applying \ getting inherited by accounts folder

In that case check ownership of all 3 folders
If ownership is different, you need to take ownership of departmental folder 1st with "Replace owners on sub container" option selected so that you can apply permissions seamlessly

Mahesh
0
 
LVL 23

Expert Comment

by:Patrick Bogers
ID: 39842734
A) how is rights inheritance arranged?
Can you post screens of the ntfs and security tabs?
0
 

Author Comment

by:adamant40
ID: 39842896
Stuck on another issue, will respond when I can. Thank you for your replies.
0
NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

 

Accepted Solution

by:
adamant40 earned 0 total points
ID: 39847786
Well stumbled across the settings that woud give me the desired results.  
ON Accounting I did special and then
Traverse Folder
List Folder
Read Attributes
Read Permissions
and APPLY to: This folder only.
0
 
LVL 38

Assisted Solution

by:Mahesh
Mahesh earned 1500 total points
ID: 39847846
If need access is the only folder underneath accounting folder to which users need access, then you have done correct.
But again you need to give modify NTFS permissions on Need access folder with This folder, subfolder and files as apply to scope so that users can work with that folder

Mahesh
0
 

Author Closing Comment

by:adamant40
ID: 39861143
Accepted my comment as it was the exact settings that worked.
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Know the reasons and solutions to move/import EDB to New Exchange Server. Also, find out how to recover an Exchange .edb file and to restore the file back.
Most folks would know the basics of how Dropbox works, so that’s not the purpose of this article. Security is what it’s all about, so here I’ll share how I choose to secure my Dropbox Account and the Data it contains.
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question