Access deny on the profile/user folder

[Jan]

Hi !

On our AD server there are a e:\profile folder with 100 "%USER%" folder's.
The administrator have not access to this folder and our Norton Antivrus
does not have access to this folder.

Is there tip how we can add the administrator to this subfolders, without
crash the security?

Regards Jan

 

[Guest]

Take owndership wiht administrtors choice. Afterward you must then repopulate permisions for the user needing access.

 

[Jan]

Take owndership wiht administrtors choice. Afterward you must then
repopulate permisions for the user needing access.

I get this msg in the security advanced

Unable to set new owner on janma.
The security descripter structure is invailed.

//Jan

 

[Cary Shultz [A.D. MVP]]

In order to change the permissions you would need to take ownership of the
folder - as Mac suggested. At this point you can use a variety of tools to
accomplish your task. You might want to look at either cacls or, even
better, xcacls....

HTH,

Cary

 

[Gopal]

I appreciate your response. But, doing it on a large scale
of 300 to 500 users is a hectic job. Any way to do it at
ease. Moreover, it does not allow you to delete the folder
even after you (administrator(s)) have the full rights.

Please reply.

Gopal

-----Original Message-----
Take owndership wiht administrtors choice. Afterward you

must then repopulate permisions for the user needing
access.

 

[Mike Kline]

Have you tried a third party tool like security explorer?

http://www.smallwonders.com/SecurityExplorer.htm

 

[Gopal]

Hey Mike,

Thank you very much. The tool is great and it really works.

Gopal