<div>
can you see the test admin in security full access permissions on the drive properties?
</div>


<div>
Two possible scenarios come to mind: 1) the F drive is shared with more restrictive permissions (when share permissions conflict with NTFS permissions, the more restrictive permissions prevail), 2) share or NTFS permissions allow DOMAIN admins access but not local admins.
</div>


<div>
Scratch that. I misread the question. I was thinking one account was a domain admin but I see both are local admins. I would still examine NTFS vs share permissions on the top level of the F drive as well as any group membership differences between the two accounts.
</div>


<div>
Kash - The Test admin does not have access permission to the drive, but the local administrators group has full permissions to the drive in which test is a member.<br />
<br />
Gilnov - Yes they are both local accounts, I'm re-checking the perms now. Not sure why the local administrators group is not giving the Test account full perms to the drive. The local administrators group has full permissions to the drive.
</div>


<div>
Check group memberships on both accounts. Test may be in a group which local admin is not that is more restrictive on F (most restrictive permissions prevail).
</div>


<div>
Gilnov - re-checked, Test is a member of the local administrators group only, same as the local administrators account. I'm restarting the server now.
</div>


<div>
Which will log out both accounts and give new security tokens with new access permissions.
</div>


<div>
Ok restarting the server changed nothing. So I tried giving the Test account FULL perms to the F:\ drive (in addition to it already being a member of the local administrators group which has FULL perms). Now the Test account can access the F:\ drive's root level folders, however when I try to access subfolders and files I get the error message:<br />
<br />
You don't currently have permission to access this folder.<br />
Click &quot;Continue&quot; to permanently get access to this folder.<br />
<br />
Once I click &quot;Continue&quot;, it then gives Test access to the subfolders below the root folder.
</div>


<div>
The root of F is not, just the standard admin share (F$). However there are several folders on F that ARE shared.
</div>


<div>
Hmmmm....what SHARE permissions (as opposed to NTFS) does test admin have on F?
</div>


<div>
I just created Test account and added it to the local administrators group so I don't think it has any share permissions. I also like to add that the F and G drives are local attached via iSCSI Array, not physical drives located inside the server. Also the data on the F and G drives are Robo-copied from a primary server . But the local Test account had no problems accessing the G drive, so F should be similar.
</div>


<div>
Have you checked permissions in the iSCSI Array filesystem? If the Robocopy job is copying permissions from another location, your test account will need to be included on the original filesystem.
</div>


<div>
Q: Won't you have to run subinacl every time robocopy updates the F drive because it will reset permissions? <br />
A: Good question, I'm not sure at this point, I know it's not resetting the perms for the local administrator. Guess I'll find out soon.<br />
<br />
Q: Does Robocopy let you assign permissions when it runs jobs or just copy/not copy existing permissions?<br />
A: I know it can copy/not copy existing permissions, I don't think it can actually assign perms.<br />
<br />
Q: I'm really not sure you how you can add a Windows local account to an iSCSI array file system.<br />
A: The iSCSI array shows up in the server O.S. as a hard drive, the server addresses it just like any local hard drive. You assign perms just like you would to any Windows filesystem.<br />
<br />
Q: Do either of the Windows local admin accounts have permissions set on the original file system? <br />
A: Nope, the local administrators account and test account exist only on the local server. Remember these are local admin accounts. They should have rights granted to anything placed on that drive. Same as if I copied a file to your computer, you would have rights to it.<br />
<br />
Q: I suspect if you were to conduct and experiment and remove the default admin account from the local admin group it would still be able to access the files on F.<br />
A: That's possible, I don't want to take a chance on breaking it since the local admin account works.<br />
<br />
Q: Have you looked at Effective permissions for the test and default admin accounts on the F drive and some sub folders? How do they compare? <br />
A: The local admin account has full rights to any subfolder or file I choose to look at. However the local test account did not, but the local admins group does. That's the part I don't understand, since the local test account is in the local admin group.
</div>


<div>
That just doesn't make sense. Try taking test out of local admin group, reboot the server, login with default admin account, add test back to local admin group, reboot and test access.
</div>


<div>
I will try that if I get the &quot;Access Denied&quot; error again. But for now the Subinacl command resolved the issue. <br />
Thanks for all your help.
</div>


<div>
My own comment was a workaround solution.
</div>


<div>
<div class="content wysiwyg-content">
On a Windows 2008 R2 server I have two local accounts, the Local administrator account and Local Test account. The local Test account is a member of the local administrators group.<br />
<br />
&nbsp;The server has 3 local drives C:\, F:\ and G:\. The Local administrator account has no problems accessing all three local drives. The local Test account has no problems accessing local drives C: and G:, however every time I try to access local drive (F:) using the Local Test account I get Access denied even though the local test account is a member of the local administrators group. <br />
<br />
What can cause the local Test account to be denied access to local drive (F:) ?
</div>
</div>


On a Windows 2008 R2 server I have two local accounts, the Local administrator account and Local Test account. The local Test account is a member of the local administrators group.

 The server has 3 local drives C:\, F:\ and G:\. The Local administrator account has no problems accessing all three local drives. The local Test account has no problems accessing local drives C: and G:, however every time I try to access local drive (F:) using the Local Test account I get Access denied even though the local test account is a member of the local administrators group. 

What can cause the local Test account to be denied access to local drive (F:) ?

Local Admin Account gets&quot;Access Denied&quot;

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.

Windows Server 2008

Operating system security (OS security) is the process of ensuring OS integrity, confidentiality and availability. OS security refers to specified steps or measures used to protect the OS from threats, viruses, worms, malware or remote hacker intrusions. OS security encompasses all preventive-control techniques, which safeguard any computer assets capable of being stolen, edited or deleted if OS security is compromised, including authentication, passwords and threats to systems and programs.

OS Security

The Microsoft Server topic includes all of the legacy versions of the operating system, including the Windows NT 3.1, NT 3.5, NT 4.0 and Windows 2000 and Windows Home Server versions.

Microsoft Server OS

Storage devices include any device used for storing and retrieving digital information. Hard disk drives (HDDs) use one or more rigid ("hard") rapidly rotating disks (platters) coated with magnetic material. Data is accessed in a random-access manner, meaning that individual blocks of data can be stored or retrieved in any order and not only sequentially. The primary competing technology for secondary storage is flash memory in the form of solid-state drives (SSDs), but HDDs remain the dominant medium for secondary storage due to advantages in price per bit and per-device recording capacity. CD-RW (Compact Disc-ReWritable) is a digital optical disc storage format that allows information to be stored outside the mechanical HDD.

Local Admin Account gets&quot;Access Denied&quot;

Local Admin Account gets"Access Denied"