#113139 - 2004-02-03 09:52 AM
Folder Rights
|
Dakota
Fresh Scripter
Registered: 2004-02-03
Posts: 9
|
hallo
We are migrating to win2003 in a few weeks.
We are going to rename user accounts from 3 letters to firstname.lastname
Problems during migration using ADMT, not migrating Built in group "Domain users & Domain Admins". Also during Security translation, the groups are not updated. The rights on the users home shares are as follows: Share: Domain Users = Full Control Ntfs: User = full control , Domain Admin = Full control
Do anyone have an Idea how to add "domain admins & and Domain users both to the share ande NTFS rights to the user home share
Have tried simple cmd files: Code:
for /f %%x in (n:\users.txt) do rmtshare \\FileSrv\%%x$=d:\users\%%x /grant "New_Domain\Domain Users":"full control" >>n:\share.log
Domt know how to match old username with new username format
Any Ideas
\regards Erik
|
Top
|
|
|
|
#113141 - 2004-02-03 10:16 AM
Re: Folder Rights
|
Dakota
Fresh Scripter
Registered: 2004-02-03
Posts: 9
|
Check the rights again.
The User (@userID) + Domain admins has "full control" on NTFS rights
I think this i legal
\erik
|
Top
|
|
|
|
#113143 - 2004-02-03 11:04 AM
Re: Folder Rights
|
Dakota
Fresh Scripter
Registered: 2004-02-03
Posts: 9
|
The user home shares looks like this:
Folder is shared "Old_domian\@username$" Share permission = old_domain\Domain Users = Full Control Folder/File permission = old_domain\Domain Admins = Full Control + The User (old_domain\@userID) = Full Control.
I have to mix them, I have made the Share open for Domain Users = (everyone)´, then limit the rights on files and folders. Dont know if this is the correct way !!
As i described I want to change both the share rights and the file and folders permissions. on all the users shares.
The tool for migration from microsoft dont update the rights on build in groups.
Ex the old rights "old_domain\domain admins" should be changed or add to "new_domain\domain admins"
Hope you understand what I mean ??
\erik
|
Top
|
|
|
|
#113145 - 2004-02-03 12:55 PM
Re: Folder Rights
|
Dakota
Fresh Scripter
Registered: 2004-02-03
Posts: 9
|
A small side step.
Perhaps its simplier to recreate all users folders using batch, setting the correct share and folders permsissions using nt recource kit programs, XCACLS.EXE and rmtshare.exe.
Code:
for /f %%x in (d:\new_users.txt) do md %%x >>d:\log.txt
for /f %%x in (d:\new_users.txt) do xcacls d:\users\%%x /g "New_domain\Domain Admins":F /y
for /f %%x in (d:\new_users.txt) do xcacls d:\users\%%x /e /g new_domain\%%x:F /y
for /f %%x in (d:\new_users.txt) do rmtshare \\filesrv\%%x$=d:\users\%%x /grant "new_domain\Domain Users":"full control" >>d:\log.txt
This batch code is fast and works
But one problem still exist.
Ex user: adam bertil old share "abt$" new share "adam.bertil$"
How to copy from the old share to the new. I have tried Code:
for /f %%n in (n:\old_users.txt) do xcopy \\filesrv\%%n$\*.* Filesrv\%%x$\ /S /E /D but theres no referense between old and new username.
also tried readline but my I am unable to figure out how to extract $old and $new. Tried left and right but old usernames are not precis.
Seems like some kind of array is the solution, but I don know how to.
My ex: Users.txt abt,adam.bertil
How to split and get $a and $b, then make the copy
\erik
|
Top
|
|
|
|
#113147 - 2004-02-03 02:22 PM
Re: Folder Rights
|
Dakota
Fresh Scripter
Registered: 2004-02-03
Posts: 9
|
some kind of referance exist, but not during batch command.
I have a txt file, with the old username and the new ones , with the following format: abt,adam.bertil dfp,david.filip egv,erik.gustav Can I get the value "abt" to be ex a$ then make adam.bertil to be b$ Then make the copy Code:
copy 'a$' 'b$'
???
\erik
|
Top
|
|
|
|
#113149 - 2004-02-03 02:40 PM
Re: Folder Rights
|
Kdyer
KiX Supporter
Registered: 2001-01-03
Posts: 6241
Loc: Tigard, OR
|
ROBOCOPY should do the trick.. Use the /SEC Switch..
http://www.ss64.com/nt/robocopy.html
Kent
|
Top
|
|
|
|
#113150 - 2004-02-03 02:46 PM
Re: Folder Rights
|
Dakota
Fresh Scripter
Registered: 2004-02-03
Posts: 9
|
maybe Im a bit unclear
please read the following.
I would like to copy from 1 file to another.
Today the folder names is in 3 letters format After migration they will be in format firstname.lastname
Source folder name is called "abl" Target folder name is called "adam.bertil"
I have a text file with all usernames in format: abl,adam.bertil
Theres is about 350 user folders
Is it possible to copy from source to target folder using this text file or is the format incorrect ? If it is incorrect how should the format be ?
Im afraid I cant explain more specific.
regards \erik
|
Top
|
|
|
|
Moderator: Jochen, Allen, Radimus, Glenn Barnas, ShaneEP, Ruud van Velsen, Arend_, Mart
|
0 registered
and 248 anonymous users online.
|
|
|