Use the actual share path not the DFS reference.
I recommend moving to “icacls” now. There are new attributes for file security
and icacls handles these while the older tools are not aware of these newer
security attributes.
Even though some of the file share sources may not support the newer security
attributes, going to icacls and using a single tool will mean any shares on
Server 2008 forward will get file and directory permissions correctly applied.
Peter Boyles
BIS Engineering Analyst
PepsiCo Inc. | Global End User Services | GEUS Deploy
SM: Issues: GEUS DEVICE L2 SUPPORT
Requests: MIGRATION AND DISTRIBUTION
Office: (972) 963-6578 | E-Mail:
[email protected]<mailto:[email protected]>
From: [email protected] [mailto:[email protected]] On
Behalf Of Christopher Bodnar
Sent: Thursday, July 9, 2015 10:06 AM
To: [email protected]
Subject: [NTSysADM] SubinACL help
We will be migrating some file shares from one domain to another. No trust
allowed ( don’t ask). The plan is to export the NTFS permissions using
subinacl, tweak the output, and then apply new permissions replaying the
modified file. Problem I’m running into is with EMC and NetApp devices. The
source is all windows file servers, no issues. The new destination will be
storage appliances, specifically NetApp. In my testing so far with SubinACL,
I’m getting this:
\\NETAPPDEVICE.ACME.COM\share1\test1\file1.txt<file:///\\NETAPPDEVICE.ACME.COM\share1\test1\file1.txt>
- DfsPath is not supported
I have seen this:
http://network-appliance-toasters.10978.n7.nabble.com/Using-Subinacl-for-CIFS-ACL-changes-td3646.html
And made sure that my account has Administrative rights on the filer. The
version of SubinACL I’m using is:
SubInAcl version 5.2.3790.1180
Anyone run into this before?
Thanks
Christopher Bodnar
Enterprise Architect II, Corporate Office of Technology:Enterprise Architecture
and Engineering Services
Tel 610-807-6459
3900 Burgess Place, Bethlehem, PA 18017
[email protected]<mailto:>
[cid:[email protected]]
The Guardian Life Insurance Company of America
www.guardianlife.com<http://www.guardianlife.com/>
________________________________
----------------------------------------- This message, and any attachments to
it, may contain information that is privileged, confidential, and exempt from
disclosure under applicable law. If the reader of this message is not the
intended recipient, you are notified that any use, dissemination, distribution,
copying, or communication of this message is strictly prohibited. If you have
received this message in error, please notify the sender immediately by return
e-mail and delete the message and any attachments. Thank you.
