Domain rights & permissions

  • Thread starter Thread starter Doug
  • Start date Start date
D

Doug

I'm sorting out my observations as I write, but some
authoritative comments/corrections would be much
appreciated. XP Pro. I have 1 user name, belonging to
local administrators group. I find I have disjoint sets
of My Documents depending on whether I logon locally or to
the domain. This is inconvenient. Is there a way to
configure around it? me<logged on local> can navigate the
file system and access My Documents of me<domain>.
However, me<domain> cannot get to My Documents of
me<local>. I presume because different profiles with
different rights & permissions are in control. So, I ask
again, is there a way to define me such that I have full
administrative power locally and suitably restricted power
in the network simultaneously? I was initally surprised
to find that I could access a server application
(Exchange) and all network shares regardless of being
logged on to the domain. I guess it's because the
workstation is a member of the domain. So what's the
point of loggin in to the domain?
TIA
Doug
 
Your user account on the local machine is independant of your user account on the domain. Local accounts are stored on the local computers SAM, as domains are stored in Active Directory, on the domain controller. As far as accessing resources on the domain while logged in to the local machine: you may have been prompted for a user name and password before you were allowed to access the resources. In that case, you supplied the credentials needed (username and password) and were given authorization to access those resources on that domain.

You can just move your local documents over to your home folder on the domain so you have access to them each time you log on to the domain. Or, you can share the My Documents folder on the local machine, store all of the documents there, and set permissions to deny access to the folder to everyone except you.

Hope this help you out :
 
-----Original Message-----
Your user account on the local machine is independant of
Click to expand...
your user account on the domain. Local accounts are stored
on the local computers SAM, as domains are stored in
Active Directory, on the domain controller. As far as
accessing resources on the domain while logged in to the
local machine: you may have been prompted for a user name
and password before you were allowed to access the
resources. In that case, you supplied the credentials
needed (username and password) and were given
authorization to access those resources on that domain.
You can just move your local documents over to your home
Click to expand...
folder on the domain so you have access to them each time
you log on to the domain. Or, you can share the My
Documents folder on the local machine, store all of the
documents there, and set permissions to deny access to the
folder to everyone except you.
Hope this help you out :)


.
Click to expand...
But not so. My local account was not challenged for a
password to access shares on the server.
 
Back
Top