Home / Windoze /

Windows Create Users Share

This setup will configure shares that will be mounted every time a user logs into their account on the domain.

names, drive letter, and other specifics may be substituted, but this structure should be followed

  1. in AD, create two groups
  2. Add all users who will have a user folder to shares_users
  3. Add only management level users who may have access to all other users' files to shares_users_management
  4. in the location you want to store the shares, create a folder named Users
    1. Set the NTFS permissions of the folder to NOT inherit permissions from its parent (copy them and remove excess when given the option)
    2. You basically want to end up with:
      • Authenticated Users - modify
      • SYSTEM Full Control
      • shares_users_management modify
      • Administrators Full Control
    3. Then set to replace child permissions
  5. share the folder as Users$ with both groups created previously using the Advanced Sharing interface
  6. create a folder in the Users folder for each user named after their win2000 username (%username%)
    1. on each folder, grant that user with modify ntfs permissions
  7. Create an additional folder called !management with another folder inside called !old users
  8. Create group policy drive mount object for everyone with the following guidelines:
  9. Create an additional group policy drive mount for shares_users_management that mounts to the Users$ share so they can access all folders within, following similar guidelines set in the previous images
Note:

this document last modified: January 30 2020 18:16

popout article

permalink

Home / Windoze /