Yes that is what i was trying to do. Have I done anything wrong? I added folder paths in a new security template called "folders", amd I set the permissions I wanted. And then I imported it in the Group poliy object that takes care of some of my users, and computers. But it seems not to be working. My users are still able to browse all of C: and even delete files from folders under C: that they have no privileges to do according to the Template I created.
regards, Marija ---------- Original Message ---------------------------------- From: "Leney, Justin" <[EMAIL PROTECTED]> Reply-To: [EMAIL PROTECTED] Date: Tue, 24 Sep 2002 17:17:25 -0400 >You have been trying to set file system permissions via a template? > > > >-----Original Message----- >From: marija efnuseva [mailto:[EMAIL PROTECTED]] >Sent: Tuesday, September 24, 2002 3:42 PM >To: [EMAIL PROTECTED] >Subject: RE: [ActiveDir] Security Templates > > > >Thanks, I'll try that. Actually I have already been doing that but it seems >not to be working. > >Regards >marija > > > >---------- Original Message ---------------------------------- >From: "Leney, Justin" <[EMAIL PROTECTED]> >Reply-To: [EMAIL PROTECTED] >Date: Tue, 24 Sep 2002 13:42:38 -0400 > >>Marija, >> >>http://nsa2.www.conxion.com/win2k/index.html Lots of good info concerning >>Templates and how to implement/administer them. >> >>Microsoft Recommends this: >> >>C:\... (and most everything underneath) >>Administrators - FC >>System - FC >>Authenticated Users - Read, Execute >> >>Users should not be denied access to most of the C:, as they'll need to >>execute dll's and whatnot. >>--------------------------------------------------------------------------- >- >>------------------ >>C:\Documents and Settings\%username%\ (these will be set by the OS when the >>user logs into the local computer or domain) >>Administrators - FC >>System - FC >>%username% - FC (or Change, if you don't want them to delete their profile >>directory) >> >> >> >> >> >> >> >> >> >>-----Original Message----- >>From: marija efnuseva [mailto:[EMAIL PROTECTED]] >>Sent: Tuesday, September 24, 2002 7:02 AM >>To: ActiveDirLista >>Subject: [ActiveDir] Security Templates >> >> >>Hallo, >> >>Can anybody tell me where can I find more documentation on Security >>Templates especially about working with the File System on local computers. > >> >>Also, can anybody send me an expample on how to deny access to all folders >>on the local C: drive, and then allow only one specific folder for every >>user. So drive C: and all subfolders should be inaccessible for everybody. >>But, for example the user "marija" should be able to access only her My >>Documents folder and have the rights that I assign her. She sholud not be >>able to see, browse, list the contents, and not to mention to read, or >write >>to any other folder on drive C: >> >>Thanks, >> >>Marija >>List info : http://www.activedir.org/mail_list.htm >>List FAQ : http://www.activedir.org/list_faq.htm >>List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ >>List info : http://www.activedir.org/mail_list.htm >>List FAQ : http://www.activedir.org/list_faq.htm >>List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ >> >List info : http://www.activedir.org/mail_list.htm >List FAQ : http://www.activedir.org/list_faq.htm >List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ >List info : http://www.activedir.org/mail_list.htm >List FAQ : http://www.activedir.org/list_faq.htm >List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/ > List info : http://www.activedir.org/mail_list.htm List FAQ : http://www.activedir.org/list_faq.htm List archive: http://www.mail-archive.com/activedir%40mail.activedir.org/
