David Bird
asked on
User Home folder security is whacked. How do I regen appropriate security
I just moved a users home folder into a new share on a new server. Because of the massive load of files it would have transferred from the old server to the new server, I moved them all to a temporary folder before changing his group GPO for home folders. Logged him out. Logged him in. Folder was created. Copied his "my documents" folder(s) into his new home folder area. A few files/folders had security issues so, yep, I fiddled.
How do I set his security on home folders back to what they would be if users folders were just recreated?
How do I set his security on home folders back to what they would be if users folders were just recreated?
ASKER
It didn't change permissions on any of the folders I copied into his home "my documents" area. User has access to \\share\homefolder$\<user> , but anything migrated/copied, ie, desktop and my documents files, no access. Security shows "special" permissions, but no access.
If I create a new folder in My documents, user has access and create/delete controls.
Did I miss something on how to get the security on the folders and files I copied INTO his home folder to regen? I tried from the <user> folder and regenerated AND to the My documents folder and regenerated. No love.
If I create a new folder in My documents, user has access and create/delete controls.
Did I miss something on how to get the security on the folders and files I copied INTO his home folder to regen? I tried from the <user> folder and regenerated AND to the My documents folder and regenerated. No love.
Can you verify the permissions on the users folder, then compare them to the desktop, my documents etc..
As well on the my documents go to advanced and verify the it is inheriting from the top level is checked
As well on the my documents go to advanced and verify the it is inheriting from the top level is checked
you need to either become the owner of root folder <user>X and all sub directories (\\share\homefolder$\<user >) (Right click on root folder - properties - Security - advanced - Owner - edit - you select your name or admin name (if you're an admin). and apply.
Once set, then you just add him to the permissions with either FULL or MOD permissions.
Once set, then you just add him to the permissions with either FULL or MOD permissions.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Glad you were able to figure it out
ASKER
Not the best solution but it worked.
If so once they are there go to the top level of his home folder, right click and to security. click on advanced.
Check off "replace permissions on all child objects with entries shown here that apply to child objects" and click apply.
This will populate the top level permission all the way down the files and folders.
Here a link about NTFS permissions and what they effect:
http://www.ntfs.com/ntfs-permissions-file-advanced.htm