首先我要感谢您的帮助,我在正确设置共享文件夹的权限方面遇到了很大的问题。
我有
- Windows 7 x64 ent. - 名称:backupfb - 已添加到域,并在驱动器 e: 上具有共享文件夹(e:\backup)
- 50 个客户端/笔记本电脑,配备 TSM Tivoli fastback,用于将文件保存在共享文件夹中的工作站
我需要为我的共享文件夹配置适当的权限,以便只有文件夹的所有者才能访问他们的文件夹。
文件夹结构为:
e:\backup
<- 作为“备份”文件夹共享\\\backupfb\backup\
e:\backup\BackupAdmin
<-- 目录由 Tivoli Storage Manager FastBack for Workstations 客户端用于下载修订和配置。节点需要对这些目录具有只读访问权限
e:\backup\RealTimeBackup
<-- 允许客户端帐户创建仅可由创建者访问的目录。因此,包含节点数据的目录只有在该节点连接到服务器时才会创建。
因此权限应如下所示(取自说明):
对象父级的可继承权限被禁用
权限条目:
\\\backupfb\backup\BackupAdmin
* Allow Users Read, Execute This folder, subfolders, and files
Traverse Folder / Execute Allow
List Folder / Read Data Allow
Read Attributes Allow
Read Extended Attributes Allow
Delete subfolders and files Allow
Delete Allow
Read Permission’s Allow
* Allow Administrators Full Control This folder, subfolders, and files
两个文件夹都启用了选项“仅将这些权限应用于此容器内的对象和/或容器”
一切正常
\\\backupfb\backup\RealTimeBackup <<--
Allow Administrators Full Control This folder, subfolders, and files
Allow CREATOR OWNER Full Control This folder, subfolders, and files (from domain)
Allow Users Special This folder only
Traverse Folder / Execute Allow
List Folder / Read Data Allow
Read Attributes Allow
Read Extended Attributes Allow
Create Files / Write Data Allow
Create Folders / Append Data Allow
Delete subfolders and files Allow
Read Permission’s Allow
Allow OWNER RIGHTS* Full Control This folder, subfolders, and files
在这里,我对创建者所有者有很大的问题,我m able to set FULL CONTROL but I can only apply "Subfolders and files only". When I change props. to "This folder, subfolders and files" and save it
将更改为“仅限子文件夹和文件”
所以我尝试使用 icacls 来设置权限
@echo off
takeown /F E:\backup\ /R /A
for /D %%i IN (E:\backup\RealTimeBackup\*) DO icacls E:\backup\RealTimeBackup\%%~nxi /grant:r cloud\%%~nxi:F /T /C
pause
但之后用户只能在 \backupfb\backup\RealTimeBackup\userfolder 中创建一个文件夹,但问题在于子文件夹
在日志中我有:
FBW5022E Unable to access the specified file Explanation: The file specified is unable to be accessed. Possibly spelled incorrectly, or bad path, or permissions.
User response: Ensure the user has the proper permissions for the file and directories involved andthat the file and directory exist
有什么想法吗?请帮忙 ;-) 谢谢