+ Post New Thread
Results 1 to 5 of 5
Windows Server 2008 R2 Thread, Some Questions in Technical; Some Questions for you guys Our Domain is ockendon.thurrock.sch.uk If I was to use a DFS Share I have to ...
  1. #1
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25

    Some Questions

    Some Questions for you guys

    Our Domain is ockendon.thurrock.sch.uk

    If I was to use a DFS Share I have to type the whole domain name in, but on the servers I seem to just be able to type in just '\\ockendon'.

    Is there any way I can chose what name I want to use, ie just server or even ockendon, has the full domain name is too long to for staff to use (They will forget it)

    -------------------

    Another question is about active directory.

    I would like to cleanup all the dead/not used accounts, when I mean that I mean like the users in the builtin folder and the built in user folder and also the administrator folder. What would be the best way of doing this? Any easy way?

    Think the domain was upgraded from 2000 and now of course 2008, so after all this time there must be accounts that windoes roles or third party programs we have not got installed anymore, that we can get rid off

    I have upload exported list, see if you can see if I can get rid of any

    Or any better ideas would be nice

    Thanks

  2. #2
    p858snake's Avatar
    Join Date
    Dec 2008
    Location
    Queensland
    Posts
    1,490
    Thank Post
    37
    Thanked 175 Times in 151 Posts
    Blog Entries
    2
    Rep Power
    51
    Oldcomp (OldCmp) can give reports on old user accounts and computers in AD.

  3. #3

    Join Date
    Nov 2007
    Location
    Rotherham
    Posts
    1,675
    Thank Post
    122
    Thanked 126 Times in 102 Posts
    Rep Power
    45
    Both my DFS Namespaces are in domain mode are resolve from \\FQDN\sharename and \\Server\share1. Infact I just noticed that I can use either of my DC so I could have \\server1\share1 or \\server2\share1 and both resolve OK.

  4. #4
    pritchardavid's Avatar
    Join Date
    Sep 2009
    Location
    South Ockendon, Thurrock, United Kingdom
    Posts
    932
    Thank Post
    18
    Thanked 64 Times in 58 Posts
    Rep Power
    25
    Ok anothber question

    What security rights to I set has the main folder?

    ie the share will be \\FQDN\Year7 shared from E:\Year7

    This is for the users documents


    It seems I had to put in the group 'Everyone' and allow write and read permissons, has with just read it would not, let me save a edited txt file or make any new files

    This seems weird to be has the test user had full permission in their user folder

    Does this mean I have to 'Everyone' group to full read and write?

    What to make sure all the security right are correct when moving back all the files I moved over during the upgrade to 2008R2

  5. #5

    Join Date
    Nov 2007
    Location
    Rotherham
    Posts
    1,675
    Thank Post
    122
    Thanked 126 Times in 102 Posts
    Rep Power
    45
    OK Couple of things here:
    First things first there are two sets of permissions that apply. Share permissions and Folder permissions. These combine and the most restrictive level of permissions applies.
    For example if my share permissions are Read Only and my Folder Permissions are Full control then I actually have Read Permissions. Thus the share permissions need to be at least the same level that you want the users to have on their folder.

    I personally tend to assign all my share permissions as "Domin Users/Domain Admins/System - Full Control" and remove the "Everyone" group unless really necessary. I then grant the users "Change" access to their own home folder (i.e. they DONT have "Full Control") but no access to the users folder itself. What I mean is that my users share is \\servername\Users\ and coresponds to e:\users on my server. A users home area is mapped in to \\servername\users\username\ and they have "change" access. If they managed to bypass the security and get to \\servername\users\ then they would have no rights to view anything. i.e. they couldn't start browsing through other users areas.

SHARE:
+ Post New Thread

Similar Threads

  1. Some Questions
    By pritchardavid in forum Wireless Networks
    Replies: 16
    Last Post: 7th October 2009, 08:24 AM
  2. interview questions
    By peterpan in forum Educational IT Jobs
    Replies: 3
    Last Post: 3rd March 2009, 01:58 PM
  3. TS questions
    By meastaugh1 in forum Thin Client and Virtual Machines
    Replies: 3
    Last Post: 7th September 2007, 07:56 PM
  4. Questions about your DC
    By Kyle in forum Windows
    Replies: 4
    Last Post: 8th June 2006, 08:14 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •