Novell to win2003 Active directory migration

5 pts.
Tags:
Active Directory
Novell
Windows Server 2003
Am migrating from Novell to Active directory Win2003 server. Have been able to migrate a test group of users and their home directories to a test environment in win2003. I can't seem to get the permissions correct for home directories to work in 2003. I have set up a share called usrshare and placed the users migrated folders in it. Each user has full permission to their own folder. The only way I have been able to get it to work is by giving read/execute permissions to the share for a group of all the users. When I do this any user in the group can see the others files. There has to be something I'm missing. Any help would be appreciated.
ASKED: July 7, 2008  7:37 PM
UPDATED: July 8, 2008  2:37 PM

Answer Wiki

Thanks. We'll let you know when a new response is added.

Here is a way I do Windows 2003. When setting up the top level folder, I

1. Share the folder
a. Permissions are set to everyone (or Domain Users) full control (Access is controled by NTFS permissions and NOT the share permissions – Keep it simple)

then on the Security tap, I select Advance and unselect the Allow inheritable permissions from the parent to propagate to this object and all child objects. Include these with entries explicitly defined here. And, when prompted select – REMOVE.

I then use the Add from this window and do the following:

2. ADD – Administrators, System and Creator Owner
a. Apply onto
i.This folder, subfolders and files
b.Permissions
i.Full control
3. ADD – Authenticated users
a.Apply onto
i.This folder, subfolders and files
b.Permissions
i.Read Attributes
ii.Read Extended Attributes
iii.Create Folders / Append Data
iv.Read Permissions
4.Add another Authenticated Users
a.Apply onto
i.This folder only (ensure you are working with top folder – this allows the user to access their folder, which is under the top folder)
b.Permissions
i.List Folder / Read Data

I use access based enumeration (ABE) on all Windows Server 2003 with SP1 or later. http://tinyurl.com/cnn6w

Windows Server 2003 Access-based Enumeration makes visible only those files or folders that the user has the rights to access. When Access-based Enumeration is enabled, Windows will not display files or folders that the user does not have the rights to access

http://support.microsoft.com/kb/288991

If you have difficulty following this, let me know.

Good luck
dmw

Discuss This Question:  

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following