Solved

NTFS Permissions on Server 2008 R2, allowing access to subfolder only

Posted on 2014-02-07
6
1,309 Views
Last Modified: 2014-02-15
Hi,
I have inherited a really messy file server and am having problems getting the right access to  user to a subfolder.

Have a Departments Share. Inside that share there are a large number of sub folders that don't have any individual share, just NTFS permissions.

Have an Accounting folder inside the departments share, and a folder "needs access" inside that. So I have a user I want to be able to mount the share Departments (works), then click Accounting Folder and only be able to see the list of folders underneath and then click "Needs Access folder" to which they have full access.

Thought that setting special permission Traverse Folder/Execute on folder Accounting for this user, then setting NTFS permissions on the Needs Access folder would allow this to work but when I try this the user is unable to open the Accounting Folder.

I have setup a share directly to the "Needs Access" folder to get around this but would like to get this setup correctly.
0
Comment
Question by:adamant40
  • 3
  • 2
6 Comments
 
LVL 36

Expert Comment

by:Mahesh
ID: 39842733
What share permissions do you have on departmental share folder ?

It must have change share permissions to users on departmental folder, and then you need to give users list folder contents \ read, read and execute and list folder permissions on same folder with this folders, subfolders and files as a scope if you want users to access all folders underneath departmental share folder
OR
this folder only as a scope if you want that users should be able to access specific folders only underneath departmental share folder.
Further,This permissions must be getting inherited by accounting folder and then on "Need Access" folder you should give him modify \ required permissions.

May be your inherited permissions are not applying \ getting inherited by accounts folder

In that case check ownership of all 3 folders
If ownership is different, you need to take ownership of departmental folder 1st with "Replace owners on sub container" option selected so that you can apply permissions seamlessly

Mahesh
0
 
LVL 20

Expert Comment

by:Patrick Bogers
ID: 39842734
A) how is rights inheritance arranged?
Can you post screens of the ntfs and security tabs?
0
 

Author Comment

by:adamant40
ID: 39842896
Stuck on another issue, will respond when I can. Thank you for your replies.
0
NAS Cloud Backup Strategies

This article explains backup scenarios when using network storage. We review the so-called “3-2-1 strategy” and summarize the methods you can use to send NAS data to the cloud

 

Accepted Solution

by:
adamant40 earned 0 total points
ID: 39847786
Well stumbled across the settings that woud give me the desired results.  
ON Accounting I did special and then
Traverse Folder
List Folder
Read Attributes
Read Permissions
and APPLY to: This folder only.
0
 
LVL 36

Assisted Solution

by:Mahesh
Mahesh earned 500 total points
ID: 39847846
If need access is the only folder underneath accounting folder to which users need access, then you have done correct.
But again you need to give modify NTFS permissions on Need access folder with This folder, subfolder and files as apply to scope so that users can work with that folder

Mahesh
0
 

Author Closing Comment

by:adamant40
ID: 39861143
Accepted my comment as it was the exact settings that worked.
0

Featured Post

VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you start your Windows 10 PC and got an "Operating system not found" error or just saw  "Auto repair for startup" or a blinking cursor with black screen. A loop for Auto repair will start but fix nothing.  You will be panic as there are no back…
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question