Re: Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- From: Decker 12 <Decker12@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Wed, 6 Aug 2008 21:33:01 -0700
Thanks Bill for the info. In the morning I'll post the ACL list from the
server. However I do have some questions regarding your setup:
What do you mean by <any group>? A local group? An AD group? Or am I
supposed to fill in that blank with the group that I want to manage, for
example:
Mac HD:Sales Dept
Owner: LocalAdminAcct
Group: admin (ie the local admin group)
Everyone: None
ACLs:
Full Control: LocalAdminAcct (same as what's shown above in POSIX)
Read/Write: MYDOMAIN\Sales
Read/Write: MYDOMAIN\Domain Admins
Read Only: MYDOMAIN\Interns
I know this sounds like a simple question that I am asking you about (ie
setting permissions for a folder).. but I have just been going nuts regarding
this Read Only thing that only appears in Office 2008, which is why I'm
trying to dig a bit deeper to find out if the cause isn't simple POSIX and
ACL permissions, but instead something dastardly that Office 2008 is trying
to do.
However your statement that:
The reason I have this setup is because no network user or group with
network users in it should *ever* have Full Control (Ownership) of any
files or folders or permissions problems will be prevalent for non-owners.
DEFINITELY intrigues me because that is not a standard I have been following
with diagnosing this problem, so I'm going to give that a try when I get to
work in the morning. I have been a Full Control kinda tester with network
account access instead of a Read/Write tester so far.
"William Smith [MVP]" wrote:
Decker 12 wrote:.
I wish to lock down this folder, so I set POSIX permissions to Owner:
Decker12, Read/Write, Group: Sales, Read/Write, Everyone: None.
This is what I do for my server permissions (recreating from memory at
home):
Owner: <a local account on the server>
Group: <a local group on the server>
Everyone: None
ACLs:
Full Control: <same local account on the server>
Read/Write: <any group>
Read/Write: <any group>
Read only: <any group>
Read only: <any group>
Read only: Everyone from directory service, not local (if needed)
ACLs should always override standard permissions.
The reason I have this setup is because no network user or group with
network users in it should *ever* have Full Control (Ownership) of any
files or folders or permissions problems will be prevalent for non-owners.
How are your permissions set? To illustrate your setup you can take a
screen shot and post it on <http://www.imageshack.us/> for free and
without creating an account.
--
bill
Entourage Help Page <http://entourage.mvps.org/>
Entourage Help Blog <http://blog.entourage.mvps.org/>
YouTalk <http://nine.pairlist.net/mailman/listinfo/youtalk>
Twitter: follow <http://twitter.com/meck>
- Follow-Ups:
- Re: Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- From: William Smith [MVP]
- Re: Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- References:
- Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- From: Decker 12
- Re: Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- From: William Smith [MVP]
- Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- Prev by Date: Re: MAJOR PROBLEM: Entourage 2008 Reminders DOES NOT REFRESH every day unless I log out and log in again!
- Next by Date: Re: help searches
- Previous by thread: Re: Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- Next by thread: Re: Office 2008 Files: Read Only, POSIX, ACLs Frustration!
- Index(es):
Relevant Pages
|
