Re: deleting users my document folders after disabling redirection

Yes, but once you're the owner, you can remove the deny, right?


"kj [SBS MVP]" <KevinJ.SBS@xxxxxxxxxxxxxxxxxx> wrote in message
news:%235RaDieMIHA.4476@xxxxxxxxxxxxxxxxxxxxxxx
Dave Nickason [SBS MVP] wrote:
I would speculate that this would just make it a little harder for
admins to browse peoples' private folders. It's also possible that
changing ownership is a right that could be taken away from certain
admins to completely prevent them from viewing those files - not sure
about that one.

I've not tried it, but if a deny 'administrator' or
'domain\administrators' was placed on the directory\files, then ownership
should have not been helpfull as the deny would override ownership.

Interesting. bad idea, but interesting.



"Dan Shallbetter" <DanShallbetter@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in
message news:2FCE07B5-B7D9-49D1-A051-F774DCC1D352@xxxxxxxxxxxxxxxx
Dave,

Logging in as administrator and following your directions I still
received access denied. I added everyone with full permissions and
was able to finish
the task. Why would my system admin account be restricted?

Thanks,

Dan


"Dave Nickason [SBS MVP]" wrote:

Open the properties of the folder and go to the Security tab. Click
Advanced and go to the Owner tab. Replace the current owner (the
ex-user)
with Administrator or another domain admin account, checking the
box to apply the change to subfolders etc. Apply the change, and
you'll be able to
delete the folder (and change security permissions, or whatever
else you wish).


"Dan Shallbetter" <DanShallbetter@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote
in message
news:A11424D9-5127-471F-A1F1-37E7AC0024FF@xxxxxxxxxxxxxxxx
How do I deleted users my document folders from the server.
Logging in as
server administrator I get access denied. SBS 2003 premium SP2

Thanks,

Dan

--
/kj



.

Relevant Pages

  • Re: acl.GetOwner(typeof(NTAccount))
    ... IIRC admins are treated differently when it comes to ownership ... if bob is the owner of a file, you will also find bob in the ownership info ... if alice is the owner of a file, the admins groups shows up in the ownership info. ...
    (microsoft.public.dotnet.framework.aspnet.security)
  • Re: Roaming Profiles (Admins must takeownership to look at)
    ... works on ownership. ... But we still need to hit the already existing folders and correct them. ... and Admins get full control. ... > I'm guessing the official Microsoft version of profile creation is based ...
    (microsoft.public.scripting.wsh)
  • Re: Administrator has Deny permission for Full Mailbox Control
    ... create the Security tab at the organizational level ... remove the explicit DENY for Domain Admins and Enterprise Admins and ... > Can anyone help me out with removing the Deny permission in a users ... > Rights area through Active Directory? ...
    (microsoft.public.exchange2000.admin)
  • Re: Roaming Profiles (Admins must takeownership to look at)
    ... but who cares who has "ownership"? ... gets full control, and Admins get full control. ... I'm guessing the official Microsoft version of profile creation is based ...
    (microsoft.public.scripting.wsh)
  • Re: Grant Administrative Access to a Domain Controller
    ... it isn't a simple case of Deny overrides Grant. ... Administrators/Domain Admins are granted explicit rights all over the directory. ... Second, on a DC, anyone with admin level rights can do pretty much anything they want. ... Domain Admins privledges, same if you Deny them access. ...
    (microsoft.public.windows.server.active_directory)