|
Posted by Miha Pihler [MVP] on July 26, 2005, 6:07 pm
Please log in for more thread options Hi,
Better then using Everyone is to specify either "Authenticated Users" or
"Domain Users" groups. Even better would be another more specific group
(e.g. "All Full Time Employees" group if you create it) -- but that depends
who needs to access the share.
Beside permissions on the share itself, users will also need NTFS
permissions on this folder (Write Permissions). If you only have Read
permission on NTFS and Write on Share -- users will still only be able to
Read from this share!
--
Mike
Microsoft MVP - Windows Security
> Your users won't be Domain Admins, they are normal users. So give either
> Everyone or Authenticated Users Modify rights at the share-level and the
> NTFS level.
>
> When creating a new share by default Windows 2000 used to give Everyone
> Full Control at share-level. Windows 2003 gives Everyone Read Only at
> share-level.
>
>> This has always been simple, but on my last two server 2003 servers that
>> I've built I can't seem to create a share that is actually writeable to
>> users. There must be a setting I'm missing and I've been searching high
>> and low for it and can't find it. Basically I create a folder on the
>> server and then right click and share. For testing purposes I am just
>> trying to make it writeable by a domain admin group member, but its
>> proving to be a difficult task. The share and folder both have security
>> settings that give domain admins full control. IDEAS???
>>
>> Thanks,
>>
>> AJ
>>
>
>
| 
XML Sitemap