Creating Server Shares for User Data

  • Article

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Some of the users in the chapter example OU have roaming user profiles, and all of them have redirected folders. You must create server shares on DC01 and apply the appropriate permissions.

To prepare a server share for roaming user profiles

  1. On \\DC01, click Start, and then click Windows Explorer.

  2. Expand My Computer, and click drive D:.

  3. Click File, click New, click Folder, and type RUP into the New Folder text box. Press ENTER.

  4. Make the folder a network share. To set user permissions:

    1. Right-click the RUP folder, and click Sharing and Security.

    2. Select Share this folder. For the Share name, type RUP$.(The $ hides the share so that it is not visible in My Network Places.)

    3. Click Permissions.

    4. Click Add, and type RUP in the Object Names text box. Click Check Names to resolve the entry to the RUPUsers security group. Click OK.

    5. With RUPUsers highlighted in the top pane, click Allow next to Full Control in the bottom pane. Click OK.

    6. Click Offline Settings.

    7. Select Files or programs from the share will not be available offline. (If you do not turn off Offline Folders for a user’s profile, you can experience synchronization problems as both Offline Folders and Roaming Profiles try to synchronize the files in a user’s profile.)

    8. Click the Security tab. Click Add and type RUP in the Object Names text box. Click Check Names and it will resolve to the RUPUsers security group. Click OK.

    9. With RUPUsers highlighted in the top pane, click Allow next to Full Control in the bottom pane. Click OK.

To prepare a server share for redirected folders

Create a network file share on DC01 to contain all the individual user folders that will be redirected. These steps assume you are already in Windows Explorer and have drive D expanded.

  1. Click File, click New, click Folder, and type Redir into the New Folder text box. Press ENTER.

  2. Make the folder a network share. To set user permissions:

    1. Right-click the Redir folder, and click Sharing and Security.

    2. Select Share this folder. Create the share name of Redir$. Click Permissions, and with Everyone highlighted in the top pane, click Remove in the bottom pane.

    3. Click Add, and type auth in the Object Names text box. Click Check Names, and the entry will resolve to the Authenticated Users built-insecurity group.

    4. With Authenticated Users highlighted in the top pane, click Allow next to Full Control in the bottom pane. Click OK.

    5. Click the Security tab. Click Add, and type auth in the Object Names text box. Click Check Names, and the entry will resolve to the built-in Authenticated Users security group. Click OK.

    6. With Authenticated Users highlighted in the top pane, click Allow next to Full Control in the bottom pane.

    7. With Everyone highlighted in the top pane, click Remove in the bottom pane. Click OK.

Following the preceding steps, you have created server file shares for roaming user profiles and redirected folders. You have set the permissions appropriately for the users who will need access to the shares, while denying access to other users.