In this situation we needed to allow a student to submit work to a shared drive but the staff didn’t want the student to be able to copy any work from within that folder even their own document.
To do this you need to setup your User/Students file permission for the folder to be the following only:
Traverse folder/execute file
List folder/read data
Create files/write data
Create folders/append data
Write attributes
Write extended attributes
You will need to have your staff group setup with modify permission for this folder for them to be able to clear out the folder periodically.
Note: You can also let the user open/delete files they have uploaded only by adding the “Creator owner” group to the user access list with modify permission.
By default Windows 2000 and 2003 terminal services does not allow a non administration account to add a printer when they log onto a remote desktop connection. When they do attempt to install a printer the user gets the following error message.
You do not have sufficient access to your computer to connect to the selected printer.
To allow users to add a network printer either manually or via a logon script you will need to do the following:
- Open up local security policy by clicking “Start -> Programs -> Administrative Tools -> Local Security Policy“.
- Open Local Policies
- Open Security Policies
- On the Right hand side double-click “Prevent users from installing printer drivers”
- Click on Disabled and then Ok and then Close the Local Security Policy window.
- Reboot the computer
Apparently you can do a gpupdate /force (win 2003) or a secedit /REFRESHPOLICY MACHINE_POLICY /enforce (windows 2000) instead of rebooting but I have not tried that myself and its been just as easy to reboot the server.
You can also set this setting on the Terminal Servers OU through group policy if you have multiple Terminal Servers to save time.
After installing sibelius 5 we were getting the following error when loading it as a normal user.
—————————
Native Instruments
—————————
Installation folder is not writable. Please select a folder now
After clicking on Ok we would see the window below then get the error if the user were to cancel out of the browse for folder. This would happen for every user thereafter also.
To fix this permanently without giving the users admin permission, login as an administrator and navigate to the C:\program files folder and select the folders “Native Instruments”, “Neuratron Photoscore” & “Sibelius Software” by Ctrl+Left Clicking them.
Right Click and select Properties.
Select Yes to the Dialogue if it shows below.
Select Users from the list of usernames and tick the Modify permission and click on Ok
Windows 2008 | Wayne | 
March 10, 2011 7:48 pm | 
Comments (0)