+ Post New Thread
Results 1 to 10 of 10
How do you do....it? Thread, Remove users from group after a set time automatically in Technical; Hi We have a shared area called "Work Hand In" which is used by students and staff to hand in ...
  1. #1

    Join Date
    Sep 2005
    Posts
    153
    Thank Post
    1
    Thanked 4 Times in 4 Posts
    Rep Power
    18

    Remove users from group after a set time automatically

    Hi

    We have a shared area called "Work Hand In" which is used by students and staff to hand in work for a lesson so a teacher can collect/mark it, or use it at a late date to allow students to demonstrate powerpoints to the class.

    However to allow users to save work to the share, they obviously have to have write access to the share. It then becomes a dumping ground for students rubbish, games etc etc.

    I would still like it to be used, but in a more controlled state. I had originally thought of having security settings put on the area for domain admins, staff, and then having a new group setup called WorkHandInGroup or something, which the students would need to be a member of to allow them to save work to the share.

    What I would like to do is:

    Easily pick out users from AD to add to the group with a few clicks, and then have a script automatically remove them from the group after the lesson has ended.

    This way, if a teacher wants to use the area, they come to see me first and I add the class pupils to the group before the lesson. The student users are then automatically removed after the lesson, preventing them from messing with the area. I can then check the share for rubbish after the lesson, and find any offending users and ban them!

    Hope someone can help.
    Mark

  2. #2
    cookie_monster's Avatar
    Join Date
    May 2007
    Location
    Derbyshire
    Posts
    4,185
    Thank Post
    392
    Thanked 278 Times in 239 Posts
    Rep Power
    74
    We have an area called Drop Box with an In and Out folder. The in folder is setup so students can write to it but not delete, this folder is emptied once a week (the content is temporarily moved not deleted so work can be retreived). Students add work during or at the end of a lesson then the teacher moves it to their shared area or work folder marks it and then put's it into the Out folder.
    Each member of staff should create a folder of their own or one for that particular lesson then delete it once they have finished, this means that the area is reasonably self policing, any stray files are removed.

    We've been using this for nearly a year now and have found it to work very well, students stopped putting games in there as they realised that they couldn't delete it again so we knew who added it. Remember to give creator owner read only permissions otherwise they can delete files that they add as this group has full control by default.
    Last edited by cookie_monster; 5th July 2008 at 02:56 PM.

  3. #3
    jsnetman's Avatar
    Join Date
    Oct 2007
    Posts
    887
    Thank Post
    23
    Thanked 134 Times in 126 Posts
    Rep Power
    39
    Just add the creator owner group, then if they put crap in there you know who they are and can be dealt with appropriately. It obviously won't stop them putting crap in at first but a few detentions in front of the whole class and they will soon get the message.
    Last edited by jsnetman; 5th July 2008 at 11:48 AM.

  4. #4

    powdarrmonkey's Avatar
    Join Date
    Feb 2008
    Location
    Alcester, Warwickshire
    Posts
    4,855
    Thank Post
    412
    Thanked 777 Times in 650 Posts
    Rep Power
    181
    Better: allow writes but not reads, then if they do put games etc there they can't actually use them. Also stops them pinching each other's work.

  5. #5
    cookie_monster's Avatar
    Join Date
    May 2007
    Location
    Derbyshire
    Posts
    4,185
    Thank Post
    392
    Thanked 278 Times in 239 Posts
    Rep Power
    74
    Of course there is also the option to schedule a CACLS script to remove the permissions to a default at the end of the lesson, but i feel that the Drop Box system is better.

    http://support.microsoft.com/kb/135268

  6. #6

    Join Date
    Sep 2005
    Posts
    153
    Thank Post
    1
    Thanked 4 Times in 4 Posts
    Rep Power
    18
    Thanks for the replies folks, I always wondered what the creater owner user was useful for??? LOL thanks for clearing that up.

    I like the idea of write only, not read as that would stop them using it as a games drop area, and using it to chat lol (although why cant they talk to each other in person??)

    Will try out some of the ideas.

    Mark

  7. #7
    cookie_monster's Avatar
    Join Date
    May 2007
    Location
    Derbyshire
    Posts
    4,185
    Thank Post
    392
    Thanked 278 Times in 239 Posts
    Rep Power
    74
    We did have a folder set to write only so they had to drag a file over the folder and place it in, we found that this created some issues as they couldn't always tell if they had added the file and couldn't open the folder to check there was also an issue with duplicate files in the folder.

    Do you have server 2003 R2? If so you can ban exe files in that folder which will prevent then putting games in there, this way you can go with the more fexible drop box idea.

  8. #8

    Join Date
    Sep 2005
    Posts
    153
    Thank Post
    1
    Thanked 4 Times in 4 Posts
    Rep Power
    18
    Yes we do have 2k3 R2, I never actually thought of putting a software restriction policy on it, although by preventing read, but not write would only allow games to be deposited there, but not played. We did have an issue where students work from office would not save properly unless they had modify permissions on the work hand in share, since office creates temporary files which are a requirement by office, although I don't see why they cant do the work in there area, then copy across afterwards...

    Mark

  9. #9
    cookie_monster's Avatar
    Join Date
    May 2007
    Location
    Derbyshire
    Posts
    4,185
    Thank Post
    392
    Thanked 278 Times in 239 Posts
    Rep Power
    74
    It's not a software restriction policy it's a feature of File Server Resource Manager FSRM called File Screening it's very handy (see link below)

    Microsoft Corporation


    You're correct about Office not being able to save files with write only permissions this is because it creates a temp file during the save process that it then cannot delete. We get around this by telling the students to save to their own work folder and then copying it into the shared folder. This has the added benefit that there is a backup copy of the work in case the teacher accidentally deletes it (it happens )

    I know you just said some of that but i was just explaining the issues we found without loosing my train of thought .


    .
    Last edited by cookie_monster; 5th July 2008 at 07:44 PM.

  10. Thanks to cookie_monster from:

    markwilliamson2001 (5th July 2008)

  11. #10

    Join Date
    Sep 2005
    Posts
    153
    Thank Post
    1
    Thanked 4 Times in 4 Posts
    Rep Power
    18
    I love this site mainly because you find out things that you might never come across if you tried to find them out yourself!

    Thanks all
    Mark

SHARE:
+ Post New Thread

Similar Threads

  1. [SIMS] Logging Users Off and Time Outs SIMS
    By Grommit in forum MIS Systems
    Replies: 27
    Last Post: 18th January 2012, 01:30 PM
  2. Replies: 0
    Last Post: 20th August 2007, 02:20 PM
  3. Replies: 10
    Last Post: 31st March 2007, 05:40 PM
  4. Moving Users to a New Group and Removing them from the old
    By ninjabeaver in forum How do you do....it?
    Replies: 5
    Last Post: 6th December 2006, 11:48 AM
  5. Bulk Remove Users from OU?
    By indiegirl in forum How do you do....it?
    Replies: 11
    Last Post: 17th August 2006, 03:23 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •