RE: Best way to set share permissions?

[Tom Miller]

Did you have to remove inheritable permissions at the root of the share?  I can't modify the sub-folder general access unless I remove that. >>> "John Aldrich" <jaldr...@blueridgecarpet.com> 5/19/2009 3:16 PM >>> Well, we don’t have 2008 yet (still on 2003.) What we have done is we have a similar setup and have a folder called “Departments” which is publically writeable. Under that we have a bunch of different departmental folders, all of which are set up so that only members of the group associated with that department (i.e. “sales” gets access to the “sales” folder and all folders under it) can read/write/view the contents of that folder. For instance, under my normal, every-day user, I’m a member of “IT” and as such I can look at any publically-viewable folder, but I can NOT see into any of the departmental folders besides the “IT” folder. Under the “Security” tab on the individual departmental folders I added all the various groups and individuals I wanted to have access and then removed all the default user groups such as “authenticated users” and such so they would not be able to even enter the individual departmental folders.     From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Tuesday, May 19, 2009 3:08 PM To: NT System Admin Issues Subject: Best way to set share permissions?   Brain cramp here.......   I have a top level share called "Data", under which my various departments have their folders.   I provide perms to the sub-folders based on AD Groups.    I have the logon script set to map a drive to server\data.  I don't mind that anyone can see all the folders under "data", but I want to be sure only the user with access to data\folder1 cannot open files under data\folder2.   I'm new to file and print under Windows (2008), please pardon my ignorance.    Tom   Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.     No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.339 / Virus Database: 270.12.34/2122 - Release Date: 05/19/09 06:21:00     Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message.