Folder Redirect Permissions Incorrect Windows 2012 R2 Essentials
New admin on this system. I have users who's offline files are not syncing with the redirected folder because they don't have permissions on lower level folders below their user names. The sync error shows up as an event ID 502 in the application log. Also, the domain admin id can't view or copy any of the folders. I suspect that some how or another someone jumbled the permissions.
Is there a powershell script to set the permissions back correctly? Does anyone have advice as to the steps I should take? I don't want to lose any data guessing at a solution.
For the permissions issues, check this:
Permission issues usually originate from manually moving the user’s folder from one location to another, or if the administrator takes ownership of the user’s folder to gain access to the contents. To prevent the first scenario from occurring, use the Move Users’ Redirected Documents Data wizard . A typical error you will receive on the client machine will be something like this:
Event Type: Error
Event Source: Folder Redirection
Event Category: None
Event ID: 102
Description: Failed to perform redirection of folder My Documents. The files for the redirected folder could not be moved to the new location. The folder is configured to be redirected to \\ servername \ sharename \%username%. Files were being moved from C:\Documents and Settings\ user \My Documents to \\ servername \ sharename \ user . The following error occurred: The security descriptor structure is invalid.
If you suspect that you are in this situation, verify the following:
The redirected user account must have at least Read, Traverse folder, List folder, Read attributes, and Read extended attributes on the actual share \\SERVERNAME\RedirectedFol
The redirected user account must have Full control and be the Owner of their personal folder \\SERVERNAME\RedirectedFol