Gill wrote:
> I've got a small workgroup that I manage (5 user machines), we share
> our business DSL with several other computers. I would like to
> create shares on our computers without the rest of the computers on
> the switch having access to them.
Might be easiest to get another little gateway/router/firewall appliance to
segregate your network - or invest in a switch that supports VLANs. Relying
on NTFS security alone isn't really a good idea.
> I've disabled simple file sharing and created identical user accounts
> on each machine.
> When I share the folders the only way I can get
> them to access the folder I'm sharing is to put the Special "Network"
> group in the Security and Permissions tab which allows everyone to
> see them.
I'm not sure what you mean by that, but my suggestions follow:
1) Create groups on each computer, too - called MYCOMPANY or something, and
add all the relevant local users to the group.
2) Create the shares as hidden shares (d:\data\whatever shared as whatever$
so it can't be browsed).
3) In the share permissions, make sure everyone has full control (this won't
matter much)
4) In the NTFS permissions, grant the group MYCOMPANY modify or full control
as you please - remove EVERYONE and select "copy" when prompted so you don't
lock yourself out.
5) Use a batch file on each computer to map drives -
net use x: \\computera\sharea$ /persistent:no
net use y: \\computerb\shareb$ /persistent:no
etc
6) Put it in the startup folder. If all computers are on at the time and can
be pinged by name, it should work...
> Any help greatly appreciated.
|
Similar Threads
