Rajnish <> wrote:
> I;ve win2k3 domain and 3 file servers having numerous folders on
> which rights are in place..My only challenge is we have changed the
> login id for some users and we have to aggign rights manually on all
> folder.Can this be automated in the terms where we can assign rights
> thru a script. Also can a list be fetched from the server where i can
> get folders on which a particular user has rights...
A few comments:
1) With the exception of home directories or redirected folders, never ever
assign permissions to users. Always assign permissions to AD security
groups. That way you set the permissions once and you never have to do it
again.
2) If you change someone's userID you don't have to change permissions on
any folder - the SID is what matters, not the name you see.
3) XCACLS can be useful when setting permissions (google it). .
4) Never assign different permissions under shared folders. Meaning, if
\\server\share1 is set up with certain NTFS permissions at that level, they
should be consistent throughout the subfolders. That way you don't end up
with \\server\share1\subfolder needing different permissions which are
really irritating for the admin to maintain.
I don't know of any reporting tools but I'm not a scripting person. Someone
else will likely post.
|
Similar Threads
Linear Mode
