Re: Folder Reidrection w/o giving users FC

From: "Herb Martin" <news@xxxxxxxxxxxxxx>
Date: Wed, 1 Feb 2006 10:17:56 -0600

> The link that clues me in that the user needs to be owener is the
> following line: This security ID may not be assigned as the owner of
> this object.
>
> Is there anyway to get around a user not having FC/Ower on the home
> directory so we can redirect?

The owner is NOT the key.

Have you places DEFAULT permissions on the parent
directory (which they don't own) so that the "Creator/Owner"
of NEW files/directories gets the proper permissions?

You must do this (especially if they are not the owner.)
Normally the owner defaults make such explicit settings
unnecessary so this is likely the discrepancy you are
seeing.

Ownership does NOT REALLY matter.

-- 
Herb Martin, MCSE, MVP
Accelerated MCSE
http://www.LearnQuick.Com
[phone number on web site]

"ctvader" <jeff.swift@xxxxxxxxx> wrote in message 
news:1138801069.096078.112290@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
> Herb,
>
> The user does not have FC or owner on the home dir but at the share
> level Everyone has FC - this limits the user to change.  Everytime we
> do see an error regarding profile redirection, we see the following
> errors:
>
> Failed to perform redirection of folder My Documents. The files for the
> redirected folder could not be moved to the new location. The folder is
> configured to be redirected to <\\%HOMESHARE%%HOMEPATH%>.  Files were
> being moved from <C:\Documents and Settings\smithz\My Documents> to
> <\\vf-homes\home\smithz>. The following error occurred while copying
> <C:\Documents and Settings\smithz\My Documents\desktop.ini> to
> <\\vf-homes\home\smithz\desktop.ini>:
> This security ID may not be assigned as the owner of this object.
>
> The link that clues me in that the user needs to be owener is the
> following line: This security ID may not be assigned as the owner of
> this object.
>
> Is there anyway to get around a user not having FC/Ower on the home
> directory so we can redirect?
>
> Thanks.
>
> Jeff
> 


.

Follow-Ups:
- Re: Folder Reidrection w/o giving users FC
  - From: ctvader

References:
- Re: Folder Reidrection w/o giving users FC
  - From: ctvader

Prev by Date: Re: Problem extending scheme
Next by Date: Re: Deny Roaming Logon
Previous by thread: Re: Folder Reidrection w/o giving users FC
Next by thread: Re: Folder Reidrection w/o giving users FC
Index(es):
- Date
- Thread

Relevant Pages

[NEWS] eNom Domain Registration Services Domain Hijacking Vulnerability
... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... eNom provides Internet domain name services. ... the owner of the domain ... Domain Transfer Request for EXAMPLE.XXX ...
(Securiteam)
Re: Pentester convicted..
... > the owner didn't want me to have it but I brought it back to ... Concerned about Web Application Security? ... You have an option to go with a managed service or an enterprise software. ...
(Pen-Test)
Re: GetNamedSecurityInfo - Read Owner pt II
... The Security Descriptor pointer ... > is much simplier than the raw PInvoke Win32 APIs. ... I am a system administrator, ... >> unsuccessful reading the owner of a file using Win APIs such as ...
(microsoft.public.dotnet.languages.vb)
Re: GetNamedSecurityInfo - Read Owner pt II
... The Security Descriptor pointer ... > is much simplier than the raw PInvoke Win32 APIs. ... I am a system administrator, ... >> unsuccessful reading the owner of a file using Win APIs such as ...
(microsoft.public.dotnet.framework.interop)
Re: how do I change ownership of and "unknown" owner
... > The Administrator you are talking about should be the Administrator of the ... > to do with NT or machine level security. ... > Owner, in all my experience it's been corruption. ... > Microsoft Security Bulletin MS03-026? ...
(microsoft.public.access.security)