|
|
 |
|
|
|||||||
| Petri.co.il is happy to award auglan the title of Most Valuable Member !!! |
| Register |  Calendar |
 Search |
 Today's Posts |
Mark Forums Read |
| Notices |
|
|
 |
new user - homefolder & permissionsthis thread has 1 replies and has been viewed 692 times
|
 |
|
|
Thread Tools | Search this Thread | Display Modes |
|
#1
29th July 2012, 22:30
|
||||||||
|
||||||||
new user - homefolder & permissions
Hi,
the situation is following (Windows 2003 and Windows XP environment) I have share on file servers in locations (e.g. server in location 35 is filesrv35, and share fodler for user folders is \\filesrv35\HOME). Folder HOME is share in which I want to automatically create home folders based on user username (I use %userprofile%), when new user log on to workstation. I want user to see only his folder and not from another user. I DON"T want to use profile field in Active Directory since users often change locations and I want GP to do everything since we can not manage to change profile in AD every day. Share permission on HOME folder is EVERYONE Full control. NTFS permission is what makes me huuuge problem, and its like this: I have: Administrators - Full control SYSTEM - Full control Authenticated users - Read & Execute; List Folders Contents; Read - WITH apply to this only. I managed to do that with following (I have this line in one .bat file) : mkdir "\\filesrv35\HOME\%username%" User folder is made BUT only Administrators and SYSTEM are propagated to home folder. If I set Authenticated users Modify control, it is propagated to home folder but that means that user can now view other users home folder. And I can not remove propagated permission. I have managed with this ICACLS to add new user permission to his home folder, but Authenticated users is still there and I can not remove it. xcopy "\\filesrv35\IT\icacls.exe" "%userprofile%" /E /I /H /R /Y cd %userprofile% icacls.exe "\\fileserv35\HOME\%username%" /c /t /grant:R %username%(OI)(CI)M I tried with icacls /remove:g "Authenticated users", its not removed, then instead of Authenticated users I put EVERYONE group, same thing, I can not remove it. I also tried with /reset switch, but it only removed user account, not Authenticated users  Can someone offer me some instructions about this, I really don't know what to try next....  |
|
#2
30th July 2012, 00:15
|
||||||||||
|
||||||||||
|
Re: new user - homefolder & permissions
Hi try in a test environment first then when you've got a working solution apply to live.
http://www.virtualizationadmin.com/a...direction.html is a good guide.
__________________
Please remember to award reputation points if you have received good advice. MCITP -W7, MCSA+Messaging, CCNA in progress. |
|
| Thread Tools | Search this Thread |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| copy user security permissions to another user | BobStockwell | General Scripting | 2 | 22nd March 2012 10:58 |
| User Permissions on IIS 7.5 | askms | Windows Server 2008 / 2008 R2 | 1 | 6th June 2011 18:55 |
| IIS7 User permissions | martfel | Windows Server 2008 / 2008 R2 | 1 | 24th August 2009 16:32 |
| RWW - permissions, why can any user RWW to any PC? | jonesy265 | SBS 2000 / 2003 | 1 | 5th March 2008 19:23 |
| User permissions not working? | JDMils | Windows Server 2000 / 2003 | 3 | 14th November 2006 03:53 |
(10)
Linear Mode
