More permissions!

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Sorry about this.

Right, assuming I have the share Profiles on C: (ie \\Server01\Profiles\) and my user accounts profile path is \\Server01\Profiles\%Username% - why (as administrator) can't I even read by default? Even after making myself owner, allowing all and telling it to inherit these permissions to child files/folders, I couldn't delete the profile folder?

Surely this is somthing I'm doing wrong?

Cheers

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

You can GPO user's folders so the user has exclusive access. Check this first.

Simon

 

Share permissions define the maximum effective perms for all files and folders beneath the shared folder. Permissions can be further restrictd but cant be broadened, by NTFS permissions on specific files and folders. this actually means a users access to a file or folder is the most restrictive set of effective permissions between share permissions and NTFS permissions on that resource. If you want a group to have full control of a folder and have granted full control through NTFS permissions, but the share permission is the default "Everyone: Allow Read" or even if the share permission allows "Change", that groups NTFS full control access will be limited by the share perm.
it can deduced from above that share perms add a layer of complexity to the management of resource acess and it is more better to configure shares with open share permissions "Everyone: Allow Full Control" thenuse only NTFS permissions to secure folders and files.
From your situation it looks like the problem is actually your NTFS perms.. Check if your account has been added to the NTFS perm to have full control

 

What was there an error message... the user could be logged on!

 

This is by design. In the profile dir are also the my docs, desktop and so on. Imagine what could happen if somebody could help himself to the documents folder of the CEO and give the finance officer to give you a raise?
The profile folder is designed with full security in mind. Most of the time the sec rules are given per folder and exclusively.

 

I fully understand that, but what happens when the user leaves the company and you need to remove that folder, surely there should be an implimentation of the ability to delete but not to modify, as although deletion is modification (at the lowest level), at the higher levels that windows operates at there are all sorts of modulations for things like this to be enabled.

 

The simplist way would be for an administrator to take ownership of the folder (and its files).

 

Good work. Quoting an answer from a braindump. Like it.

 

When that's all you know, what else can you do?

 

Pedant alert!

He didn't actually know it, hence the copy and paste...

 

Uhhhh, what? I didn't understand your post after reading through it twice. As someone who advocates braindumps, don't post your garbage and try helping out the other members of the forum. Your advise stinks, and the last thing we want is other people inheriting your bad knowledge. Frankly, how you're allowed to continue posting is beyond me.