Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

User restricted to NOT give others permissions on folders

Status
Not open for further replies.
TCLiven

TCLiven

Technical User
Nov 21, 2007
30
US
Hi There -

Each of our users have a home drive that they have full access on. Some users are creating folders within their home drive and then giving rights to other users to access it. Is there a way I can disable the users ability to search the domain for users? Thanks for your help.
 
Sort by date Sort by votes
AFAIK no. But you can give Modify not Change permissions for share, this will prevent users from modifying their files and folders permissions.

===
Karlis
ECDL; MCSA
 
Upvote 0 Downvote
I always set up the users so that they can't take ownership or change permissions on their home drive. I have it so that only the user, system (for antivirus access in our case), and administrators group have full control.

Cheers.
 
Upvote 0 Downvote
Thanks to both of you. I was hoping there was some type of registry entry that I could kill. I'll try the suggestions you gave and see how it goes. Thanks for your time!
 
Upvote 0 Downvote
I tried both of your suggestions to no luck. The problem is not the home drive itself, but a folder the user creates within home. I know actually locking down the folder is a no go, but I was hoping to deny the ability to search for users in the domain. I'll keep looking, probably a wasted effort though. Thanks again.
 
Upvote 0 Downvote
When you set the permissions for the user's home directory make sure that they apply to the home directory, subfolders, and files. It's always worked for me.

ONLY the specific user, SYSTEM, and administrators group should be listed on the permissions tab.

When a user creates a new folder or file in their home directory the folder or file inherits the permissions from the home directory which means that they can't change the permissions on the newly created folder or file.

Also, although the user can see the other users if the user clicks on another user then they should get an "access denied".

Cheers.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
316
microsGuy16
microsGuy16
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
380
DrB0b
DrB0b
DTGMI
  • Locked
  • Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
302
DTGMI
DTGMI
dpellegrini
  • Locked
  • Question
Website will load using hostname but not IP address
Replies
3
Views
632
mangentle
mangentle
StevenFromSouth
  • Locked
  • Question
VPN Connects but cannot access remote network computers or folders
Replies
1
Views
142
StevenFromSouth
StevenFromSouth

Part and Inventory Search

Sponsor

Back
Top