Creating users and Assigning Folder level permissions on a Windows Server 2003 Domain

After my previous post which was on How to install Active Directory on a Windows Server 2003, I thought creating user accounts in Active Directory and Assigning permissions to folders will be more suited to follow on.

First let’s look at how we can create user accounts in a domain (after installing active directory)

  • Log in to your domain controller with an administrative privileged account.
  • Click on Start -> All programs -> Administrative tools -> Active Directory Users and computers
  • Expand the domain -> Right Click on the User container and select New -> Select User
  • You will be prompted with the New Object – User Window
  • Fill in the necessary details and click Next
  • Assign and confirm the password -> click Next
  • On the summary screen verify your details and click Finish.

User account is created and you can create any number of users here to meet your requirements. 

I have created two user accounts namely, User A and User B. By default when you create a new user account it will be a member of the Users group. You can go into the properties of the user object and make the user a member of any other group if necessary.

Now let’s look at how to assign permissions to a Shared Folder

  • Create a folder and Share the folder by right clicking on the folder and selecting Sharing and Security
  • You will be prompted with the Folder properties Window where you will have two options (Do not share this folder and share this folder)
  • Select Share this folder option 
  • Click on Permissions and you will be prompted with the Permissions window which shows who can access this shared folder over the network. By default “Everyone” can access the folder.
  • I am going to make this folder accessible only to User A. To achieve this, I am going to remove all other users permission and add only User A.
  • On the Sharing Permissions for Folder window click on “Everyone” and click on Remove.
  • After removing the everyone group from the permissions window click on Add and add User A and grant him full control permission
  • Click Apply and Ok.
  • Now click on the Security Tab, here you will be able to see the permissions given for each user or group towards this folder.
  • Remove all users and groups and then add User A, if you want you can add the Administrator acccount so that only User A and the Administrator will have access to the folder and no one else.
  • After you add User A, give User A full control permission over his folder and click Apply and Ok.

After you perform these tasks, only User A will be able to access the Shared Folder. 

Screen shots attched below 🙂

Advertisements

11 thoughts on “Creating users and Assigning Folder level permissions on a Windows Server 2003 Domain

  1. how to give the ‘admin sharing permision’ to users? i .e I want to share the resources to the users as a user.(not a Admin)

  2. Hi Andhe,
    what do you mean bby admin sharing permission?

    you can give the user just a read only permission and remove the rest, if this is what you ae looking for.

  3. windows 2003 ent. server with domain controller active directory user created but not able to assign a rights on shared forlder want user to give all permission but not delete option

  4. Exceptionally well written! On a scale from 1 to 10, You are an 11. awesome posts and thought|Thanks for expressing your own write up I�d constantly stick to|Thank you almost all for the details. I simply have to tell you that your pages are really awesome.

  5. I have added your article to my LinkedIn bookmarks Who raised you? They deserve a medal for a job well done. Thank you for writing this great website. Crazy weird, this website was already loaded when I opened my lap top. Geez, that is unbelievable.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s