On a Windows 2003 Server I can't get permissions to work for only one particular new user. There is a parent folder and 3 levels of children underneath. I have him set for modify on all those levels, but he can not modify. It keeps saying access denied. Any ideas of what I'm missing?
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Can't get permissions for a user to work
- Thread starter DawnP
- Start date
Could it be an inheritence issue? You can try: Right click on the folder, click Sharing and Security, check the Security tab for permissions, then click the advanced button and see if "Inherit from parent blah blah blah" is checked. You can also try adding his specific user name to security, instead of just the group he is in, if you have your AD set up like that. Good luck!
WhoKilledKenny
MIS
Also,
Check the Share Permission and the NTFS permission. More than likely if the above suggestions don't work, the user could be a member of a groups that has deny.
Jesse Hamrick
Check the Share Permission and the NTFS permission. More than likely if the above suggestions don't work, the user could be a member of a groups that has deny.
Jesse Hamrick
Did you have the user log of and back on? Security changes won't take affect if he is still logged on as you make the changes.
What's funny is I've seen some security changes that do require a fresh log-in but I've seen others that work immediately, no additional steps required. I'm guessing if it's a GPO-related change (added user to an OU with rights to the folder) that would require a fresh log-in but a direct editing of folder access rights does not need a new log-in?
What's funny is I've seen some security changes that do require a fresh log-in but I've seen others that work immediately, no additional steps required. I'm guessing if it's a GPO-related change (added user to an OU with rights to the folder) that would require a fresh log-in but a direct editing of folder access rights does not need a new log-in?
You only need to log off and on if the user changes group membership. That is when their tokens receive group membership. If you grant rights to the user specifically, or a group they are already members of, there is no need to log off and back on.
Dan
CCA Citrix 4.0
MCP 2003
70-290 Passed
70-291 Passed
Dan
CCA Citrix 4.0
MCP 2003
70-290 Passed
70-291 Passed
- Thread starter
- #8
All,
The user has logged off and back on again.
As far as inheritence, neither "allow inheritable" or "replace permissions" is checked on the advanced tab.
He is entered as an individual user (as everybody else is), and not as a group.
No groups have deny to this directory.
Just a bit more information for you...
Any other suggestions?
The user has logged off and back on again.
As far as inheritence, neither "allow inheritable" or "replace permissions" is checked on the advanced tab.
He is entered as an individual user (as everybody else is), and not as a group.
No groups have deny to this directory.
Just a bit more information for you...
Any other suggestions?
- Status
Similar threads
- Locked
- Question
- Locked
- Question