为用户正确设置共享文件夹

tag-icon tag-icon windows network-share file-permissions file-sharing
为用户正确设置共享文件夹

首先我要感谢您的帮助,我在正确设置共享文件夹的权限方面遇到了很大的问题。

我有

  • Windows 7 x64 ent. - 名称:backupfb - 已添加到域,并在驱动器 e: 上具有共享文件夹(e:\backup)
  • 50 个客户端/笔记本电脑,配备 TSM Tivoli fastback,用于将文件保存在共享文件夹中的工作站

我需要为我的共享文件夹配置适当的权限,以便只有文件夹的所有者才能访问他们的文件夹。

文件夹结构为:

e:\backup<- 作为“备份”文件夹共享\\\backupfb\backup\

e:\backup\BackupAdmin<-- 目录由 Tivoli Storage Manager FastBack for Workstations 客户端用于下载修订和配置。节点需要对这些目录具有只读访问权限

e:\backup\RealTimeBackup<-- 允许客户端帐户创建仅可由创建者访问的目录。因此,包含节点数据的目录只有在该节点连接到服务器时才会创建。

因此权限应如下所示(取自说明):

对象父级的可继承权限被禁用

权限条目:

\\\backupfb\backup\BackupAdmin

* Allow Users Read, Execute This folder, subfolders, and files
                        Traverse Folder / Execute Allow
                        List Folder / Read Data Allow
                        Read Attributes Allow
                        Read Extended Attributes Allow
                        Delete subfolders and files Allow
                        Delete Allow
                        Read Permission’s Allow

* Allow Administrators Full Control This folder, subfolders, and files

两个文件夹都启用了选项“仅将这些权限应用于此容器内的对象和/或容器”

一切正常

\\\backupfb\backup\RealTimeBackup <<--

Allow Administrators Full Control This folder, subfolders, and files
Allow CREATOR OWNER Full Control This folder, subfolders, and files (from domain)
Allow Users Special This folder only
                Traverse Folder / Execute Allow
                List Folder / Read Data Allow
                Read Attributes Allow
                Read Extended Attributes Allow
                Create Files / Write Data Allow
                Create Folders / Append Data Allow
                Delete subfolders and files Allow
                Read Permission’s Allow

Allow OWNER RIGHTS* Full Control This folder, subfolders, and files

在这里,我对创建者所有者有很大的问题,我m able to set FULL CONTROL but I can only apply "Subfolders and files only". When I change props. to "This folder, subfolders and files" and save it将更改为“仅限子文件夹和文件”

所以我尝试使用 icacls 来设置权限

 @echo off

takeown /F E:\backup\ /R /A

for /D %%i IN (E:\backup\RealTimeBackup\*) DO icacls E:\backup\RealTimeBackup\%%~nxi /grant:r cloud\%%~nxi:F /T /C

pause

但之后用户只能在 \backupfb\backup\RealTimeBackup\userfolder 中创建一个文件夹,但问题在于子文件夹

在日志中我有:

FBW5022E Unable to access the specified file Explanation: The file specified is unable to be accessed. Possibly spelled incorrectly, or bad path, or permissions.
User response: Ensure the user has the proper permissions for the file and directories involved andthat the file and directory exist

有什么想法吗?请帮忙 ;-) 谢谢

相关内容