Let users to view and access only their files on Windows shared folder

windows-server-2008 file-sharing
6,628

Solution 1

First thing's first, configure your permissions properly. If you don't want everybody to have read/write access to everything, then don't. You may want to give everybody permissions to create directories at the root of the share and then give "CREATOR OWNER" full access.

After you've dialed in your permissions, turn on access based enumeration in order to prevent users from seeing folders they do not have rights to.

Solution 2

Its similar to setting up folder re-direction or the old roaming profiles. Only the user or admins should be able to access their own roaming folder so do this:

  1. Set Share Permissions for the Everyone group to Full Control.
  2. Use the following settings for NTFS Permissions:
  • CREATOR OWNER - Full Control (Apply onto: Subfolders and Files Only)
  • System - Full Control (Apply onto: This Folder, Subfolders, and Files)
  • Domain Admins - Full Control (Apply onto: This Folder, Subfolders, and Files)
  • Everyone -
    • Create Folder/Append Data (Apply onto: This Folder Only)
    • List Folder/Read Data (Apply onto: This Folder Only)
    • Read Attributes (Apply onto: This Folder Only)
    • Traverse Folder/Execute File (Apply onto: This Folder Only)

Where Everyone can be your security group and add your users to this group

Article reference: Create security-enhanced redirected folder - Windows Server | Microsoft Docs

Share:
6,628

Related videos on Youtube

Tomas
Author by

Tomas

Updated on September 18, 2022

Comments

  • Tomas
    Tomas almost 2 years

    I have shared one folder on our Windows 2008 server with Everyone Read/Write access rights. I would like to prevent file sharing between users. For example if user No1 upload file to shared folder a user No2 will not see files which was uploaded by user No1 and will not have access.

  • joeqwerty
    joeqwerty almost 13 years
    The problem as I see it is that the OP is dealing with a single folder to which everyone has read/write permission on and users are creating files in this single folder, so ABE isn't going to work. If the OP created a separate folder for each user then ABE would solve the problem.
  • Daniel B.
    Daniel B. almost 13 years
    I think that's what Jason meant. If everyone can create a directory, they can create their own directory, they would then have full access(Creator Owner) to the contents of what is now their personal subdirectory. Right?
  • joeqwerty
    joeqwerty almost 13 years
    The OP seems to be implying a single folder where users are creating files and/or folders. As such, ABE won't work. The OP would need to create separate folders for each user, secure those folders to the appropriate user, and then enable ABE. Any folder or file created in the parent folder is going to be accessible by every user by virtue of the fact that they all have read/write permissions on the parent folder. The only way to enable ABE is to create a folder for each user, secured to that user.
  • Andrew Schulman
    Andrew Schulman about 3 years
    Can you provide a link to the article?
  • doggonewater672
    doggonewater672 about 3 years

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to access shared folders over Windows Server 2008 VPN from Windows 7 client?
windows server 2008 r2 how to limit access to smb by ip range?
How do I lock a file for editing that's stored on a shared folder?
Some users unable to see files that others can see
Connecting to Server 2008 shares fails
Specifying Username/Pass as part of a UNC path or map network drives for a windows service
Network sharing on Server 2008 asking for login
Close locked file in Windows Share using Powershell and Openfiles
No-password file share still requires login
How can I get a list of shared directories on local Windows server?