[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

NTFS Folder Permissions

Posted on 2014-02-24
3
Medium Priority
?
472 Views
Last Modified: 2014-02-26
Had a request from a user to have the global downloads folder turned into a secure zone.

Basically need it so everyone can save to it, open their own files, but cannot view anyone elses files.

I have the following permissions in place.

Creator Owner - Full Control
Domain users - Write + List folder contents

The users don't want each other to be able to see the list folder contents but if I remove this it comes up access denied for the entire folder.

The only workaround I have thought of is to create a folder per user within downloads and tie it down so each person has their own folder which only they can view and save into.

But this has been met with "Why do I have to do this, I don't currently choose where I save my downloads will I have to manually move them into my folder everytime, will every staff member have to have their own folder."
0
Comment
Question by:GordonRae
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 3

Expert Comment

by:RKnebel512
ID: 39884591
Is this a single, communal computer you are talking about?  Or is it a shared drive on the network?
0
 

Author Comment

by:GordonRae
ID: 39884905
It's a domain

With a redirected my documents that points to one folder on the server.

Inside this share everyone has full control and domain users have full control on security

Inside this share there is a downloads folder which I have removed inheritance from and manually put in creator owner with full control and domain users with write and list folder contents

But the users don't want to be able to see all the list folder contents but when I remove list folder contents they cannot access the downloads folder it says access is denied
0
 
LVL 3

Accepted Solution

by:
RKnebel512 earned 1500 total points
ID: 39885520
I would create a home directory for each user. You would give each person their own folder.  

- Open up "Active Directory Users and Computers"
- Select all the users
- Right-click and chose properties.
- Go to the profile tab.
- Click the Home Folder check box.
- Select a drive letter.
- In the box put, "\\bigfirm.com\BigFirmShares\Home\%Username%"  (Replace the path with the real path of where these folders will be, but keep the "%Username%".  That will tell windows to just take the username and name the folder that)

This will be much easier to manage permissions.

As to the users not wanting to change where they are saving things, you can change the default to where it will be saved.  I'm sure there are scripts out there to automate it as well.
0

Featured Post

Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question