Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Creating group in Active directory server 2000

Status
Not open for further replies.
bunty18

bunty18

IS-IT--Management
Feb 1, 2005
67
US
I am trying to create a group in active directory with global scope and security. There is a problem. I have added myself as a member of that group. Then I have created a new folder on the file server and added that group in the security tab of the folder properties and gave that group full control. As I am a member of that group, so I should have access to that folder but whenever I tried to open it, it says do not have permission.

I dont know if I am making the group the wrong way. I have checked MS forums and I think I am doing the right way.

Can anybody help me with it.

Thanks in advance
 
Sort by date Sort by votes
Do you have any permissions (inherited or otherwise) that may be denying your user or the group access? Is the folder shared? Make sure that the share permisions don't prevent you or the group from accessing the folder. "Deny" always overrides any allow permission and when combining share and ntfs permissions, the most restrictive are applied.
 
Upvote 0 Downvote
I have created that group under the USERS folder that is under the domain in AD. That group is not inheriting any pemission and the folder where I have added this group in permission, that folder is also not inheriting any permission from parent.

But still it is not working.

Any idea???
 
Upvote 0 Downvote
If the folder isn't inheriting any NTFS permissions, is the folder shared? If so, does the group or you user have the proper Share permissions (in addition to the NTFS permissions that you set to grant full control)?

Here is another thought, I found this article on MS knowledgebase:
Another possibility, did you create the folder with a different user than your user account? If so, did you encrypt the folder with the other user account (domain/enterprise admin account)?
 
Upvote 0 Downvote
Did you logoff / logon then try again? Depending on your setup it can take time to replicate the security change to all your domain controllers. You can force immediate replication by going into AD Sites & Service. Expand your site, expand servers then click the NTDS settings for your domain controller. Right-click each connection and choose replicate now.
 
Upvote 0 Downvote
The folder is not shared and it is not encrypted. There is a security tab in the properties of the group. Do I need to put any specific group in it because right now the group I have created is not inheriting any permissions from the domain.
 
Upvote 0 Downvote
The folder must be shared inorder for your users to access the folder remotly.

 
Upvote 0 Downvote
That security tab only sets the permissions for that object (the group). Basically, it determines which users and groups can view the properties of the group and make changes to the group. I'd go with basst's suggestion to logoff/logon and force replication.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Aquiles Vidal
  • Locked
  • Question
Web Browsers in Windows Server or Terminal Server
Replies
0
Views
268
Aquiles Vidal
Aquiles Vidal
MaioMaio
  • Locked
  • Question
Server Remote Desktop License
Replies
0
Views
219
MaioMaio
MaioMaio
julis2103
  • Locked
  • Question
Active Directory
Replies
0
Views
86
julis2103
julis2103
goombawaho
  • Locked
  • Question
Microsoft Azure Active Directory - Backup Admin Account 1
Replies
2
Views
335
goombawaho
goombawaho
ravalos
  • Locked
  • Question
Problem with PDFs in IIS
Replies
1
Views
475
gbaughma
gbaughma

Part and Inventory Search

Sponsor

Back
Top