G
Guest
I have a problem getting rid of OLD file permissions. It's not that I can't
remove them, it's that I need to remove them from about 120GB worth of files.
Uuuuugh... The problem stems from an old domain that was set up several
years ago and trusts between the two domains were established. That old
domain no longer exists, but these old file permissions still do. Is there
ANY way that you can use CACLS or SubInACL to remove ALL permissions from
files/folders that are NOT known or part of the existing domain? This is
only an issue because we are replacing an old file server and would like to
have all these OLD DEAD permissions eliminated.
Here is an example of what these permissions look like.
Authenticated User
Domain Admins
S-1-5-21-1047886722-1192775343-1539857752-512
SYSTEM
I tried this with the following syntax:
subinacl /subdirectories D:\*.* /cleandeletedsidsfrom=MyDomainName
From all the research that I can find, it appears that if the domain does
not exist any longer, you're SOL!
Picture this:
Domain1\Fileserver1
Domain2
Domain3
Rights/Trusts have been established on Domain1\Fileserver1 to allow access
from Domain2 & Domain3
All 3 domains are migrated over time into one domain. Domain1 remains.
Domain2 and Domain3 are De-Commissioned. Time goes by.. Tic Toc Tic Toc.
Domain1\Fileserver1 is getting old and full. New Server is added.
Domain1\Fileserver2. Now we want to migrate all files from Fileserver1 to
Fileserver2. This task is a breaze with XCOPY. However we would like to
clean up all of the non-existent SID's.(from the former Domain2 & Domain3.
XCOPY copies all of our files over WITH all the ACL's.
Now how can we dump all the SID's from the NEW server that still linger from
the two de-commissioined domains? I am SURE that we are not the only ones
that have ever done this.
Many Many Thanks to everyone that might be able to assist.
-SWarrior
remove them, it's that I need to remove them from about 120GB worth of files.
Uuuuugh... The problem stems from an old domain that was set up several
years ago and trusts between the two domains were established. That old
domain no longer exists, but these old file permissions still do. Is there
ANY way that you can use CACLS or SubInACL to remove ALL permissions from
files/folders that are NOT known or part of the existing domain? This is
only an issue because we are replacing an old file server and would like to
have all these OLD DEAD permissions eliminated.
Here is an example of what these permissions look like.
Authenticated User
Domain Admins
S-1-5-21-1047886722-1192775343-1539857752-512
SYSTEM
I tried this with the following syntax:
subinacl /subdirectories D:\*.* /cleandeletedsidsfrom=MyDomainName
From all the research that I can find, it appears that if the domain does
not exist any longer, you're SOL!
Picture this:
Domain1\Fileserver1
Domain2
Domain3
Rights/Trusts have been established on Domain1\Fileserver1 to allow access
from Domain2 & Domain3
All 3 domains are migrated over time into one domain. Domain1 remains.
Domain2 and Domain3 are De-Commissioned. Time goes by.. Tic Toc Tic Toc.
Domain1\Fileserver1 is getting old and full. New Server is added.
Domain1\Fileserver2. Now we want to migrate all files from Fileserver1 to
Fileserver2. This task is a breaze with XCOPY. However we would like to
clean up all of the non-existent SID's.(from the former Domain2 & Domain3.
XCOPY copies all of our files over WITH all the ACL's.
Now how can we dump all the SID's from the NEW server that still linger from
the two de-commissioined domains? I am SURE that we are not the only ones
that have ever done this.
Many Many Thanks to everyone that might be able to assist.
-SWarrior